CVE-2025-2783

Summary

Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. (Chromium security severity: High)

Affected Software

VendorProductVersion RangeStatus
GoogleChrome134.0.6998.177 < 134.0.6998.177affected

Weaknesses

  • Incorrect handle provided in unspecified circumstances

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References