PT-2025-34809 · Google · Google Chrome

Published

2025-08-26

Updated

2025-08-27

CVE-2025-9478

Report an issue

CVSS v3.1

8.8

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions:

Google Chrome versions prior to 139.0.7258.154

Description:

A use-after-free issue exists in the ANGLE renderer of Google Chrome. This allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. Google’s AI agent, Big Sleep, discovered and fixed this issue.

Recommendations:

Update Google Chrome to version 139.0.7258.154 or later.

Fix

RCE

Use After Free

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2025-9478

Affected Products

Google Chrome

PT-2025-34809 · Google · Google Chrome

Weakness Enumeration

Related Identifiers

Affected Products

References · 14