Google · Google Chrome · CVE-2025-0448
**Name of the Vulnerable Software and Affected Versions**
Google Chrome versions prior to 132.0.6834.83
Microsoft Edge (affected versions not specified)
**Description**
The issue is related to an inappropriate implementation in Compositing, allowing a remote attacker to perform UI spoofing via a crafted HTML page. This could potentially lead to the attacker manipulating the user interface.
**Recommendations**
For Google Chrome versions prior to 132.0.6834.83, update to version 132.0.6834.83 or later to resolve the issue.
For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.