CVE-2025-1914

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 134.0.6998.35

Description The issue is an out-of-bounds read in the V8 JavaScript engine in Google Chrome, allowing a remote attacker to perform out-of-bounds memory access via a crafted HTML page. This has a high security severity according to Chromium. The vulnerability could lead to severe consequences for users who do not update their browsers in a timely manner, including potential sandbox escapes and arbitrary code execution. However, there are no reported active exploitations of this issue.

Recommendations For Google Chrome versions prior to 134.0.6998.35, update to version 134.0.6998.35 or later to address the out-of-bounds read vulnerability in the V8 JavaScript engine. As a temporary workaround, consider restricting access to potentially vulnerable web pages until the update is applied.