PT-2025-45517 · Google · Google Chrome
Published
2025-11-07
·
Updated
2025-11-10
·
CVE-2025-12908
CVSS v2.0
6.4
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Google Chrome versions prior to 140.0.7339.80
Description
A flaw exists in Google Chrome on Android due to insufficient validation of untrusted input within the Downloads functionality. This issue could allow a remote attacker to perform domain spoofing by utilizing a specially crafted HTML page. The security severity is rated as Low.
Recommendations
Update Google Chrome to version 140.0.7339.80 or later.
Exploit
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Google Chrome