CVE-2025-10585

Summary

Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Affected Software

VendorProductVersion RangeStatus
GoogleChrome140.0.7339.185 < 140.0.7339.185affected

Weaknesses

  • CWE-843: Type Confusion

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References