PT-2025-9738 · Google+3 · Google Chrome+3

Khalil Zhani

Published

2025-03-04

Updated

2025-04-03

CVE-2025-1917

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Google Chrome on Android versions prior to 134.0.6998.35

Description The issue is related to an inappropriate implementation in the Browser UI, allowing a remote attacker to perform UI spoofing via a crafted HTML page. The severity of this issue is classified as Medium.

Recommendations For versions prior to 134.0.6998.35, update to version 134.0.6998.35 or later to resolve the issue.

Exploit

Fix

Clickjacking

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1021

Related Identifiers

ALT-PU-2025-4164

ALT-PU-2025-4366

BDU:2025-02672

CVE-2025-1917

DSA-5875-1

MGASA-2025-0091

OPENSUSE-SU-2025:0084-1

OPENSUSE-SU-2025:14854-1

Affected Products

Alt Linux

Debian

Google Chrome

Red Os

PT-2025-9738 · Google+3 · Google Chrome+3

CVE-2025-1917

Weakness Enumeration

Related Identifiers

Affected Products

References · 66