PT-2025-45514 · Google+1 · Google Chrome+1
Published
2025-09-02
·
Updated
2025-12-02
·
CVE-2025-12905
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Google Chrome versions prior to 140.0.7339.80
Description
A flaw exists in Google Chrome’s Downloads functionality on Windows. This issue allows a remote attacker to bypass the Mark of the Web security feature using a specially crafted HTML page. The security severity is rated as Low.
Recommendations
Update Google Chrome to version 140.0.7339.80 or later.
Fix
Origin Validation Error
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Google Chrome
Red Os