CVE-2025-6555

Опубликовано: 24 июн. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

Ссылки

https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop_24.html
Vendor Advisory
https://issues.chromium.org/issues/407328533
Issue Tracking
Permissions Required

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 138.0.7204.49 (исключая)

EPSS

Процентиль: 16%

0.00052

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-416

Связанные уязвимости

CVE-2025-6555

CVSS3: 5.4

ubuntu

3 месяца назад

Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-6555

msrc

3 месяца назад

Chromium: CVE-2025-6555 Use after free in Animation

CVE-2025-6555

CVSS3: 5.4

debian

3 месяца назад

Use after free in Animation in Google Chrome prior to 138.0.7204.49 al ...

ROS-20250707-05

CVSS3: 5.4

redos

2 месяца назад

Уязвимость chromium

GHSA-p5pm-vpwj-6rcc

CVSS3: 6.5

github

3 месяца назад

Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

EPSS

Процентиль: 16%

0.00052

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-416