Google Chrome Vulnerability

Google Chrome Vulnerability image
You are here:

Overview

Google has released an emergency update to address CVE-2025-10585, a Type Confusion vulnerability in the V8 JavaScript/WebAssembly engine used by Chromium-based browsers. Google confirms an exploit exists in the wild and the fix is included in the Stable channel updates: Chrome 140.0.7339.185 / 140.0.7339.186 (Windows/macOS) and 140.0.7339.185 (Linux). Organizations should treat this as an active, high-risk zero-day and apply updates immediately.

TECHNICAL DETAILS

  • Vulnerability: CVE-2025-10585 – Type Confusion in V8 (JavaScript/WebAssembly engine). Type confusion may allow an attacker to cause memory corruption, which can lead to arbitrary code execution in the context of the browser renderer process.
  • Exploit Status: Google and multiple security outlets report an active exploit being used in the wild. Public reporting indicates this….

Download the Report

Date

Share

Previous Reports