CVE-2025-6555

Опубликовано: 24 июн. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

Ссылки

https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop_24.html
Vendor Advisory
https://issues.chromium.org/issues/407328533
Issue Tracking
Permissions Required

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Версия до 138.0.7204.49 (исключая)

EPSS

Процентиль: 17%

0.00054

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-416

Связанные уязвимости

CVE-2025-6555

CVSS3: 5.4

ubuntu

около 1 месяца назад

Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

CVE-2025-6555

msrc

около 1 месяца назад

Chromium: CVE-2025-6555 Use after free in Animation

CVE-2025-6555

CVSS3: 5.4

debian

около 1 месяца назад

Use after free in Animation in Google Chrome prior to 138.0.7204.49 al ...

ROS-20250707-05

CVSS3: 5.4

redos

27 дней назад

Уязвимость chromium

GHSA-p5pm-vpwj-6rcc

CVSS3: 6.5

github

около 1 месяца назад

Use after free in Animation in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

EPSS

Процентиль: 17%

0.00054

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-416