CVE-2025-11756

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 141.0.7390.107 Chromium versions prior to 141.0.7390.107

Description A use-after-free issue exists in the Safe Browsing component of Google Chrome and Chromium. This allows a remote attacker who has compromised the renderer process to potentially perform out-of-bounds memory access via a crafted HTML page. The issue is related to a vulnerability in the RendererURLLoaderThrottle when a resource load was redirected. The vulnerability allows attackers to affect the system and potentially execute malicious code. A researcher named 'asnine' reported the issue and received a bounty of $7,000 for its discovery.

Recommendations Update Google Chrome to version 141.0.7390.107 or later. Update Chromium to version 141.0.7390.107 or later.