Home
affected
Description
Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CISA Known Exploited Vulnerability
Date added 2025-11-19 | Due date 2025-12-10
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Product status
References
www.cisa.gov/...erabilities-catalog?field_cve=CVE-2025-13223
chromereleases.googleblog.com/...-update-for-desktop_17.html
issues.chromium.org/issues/460017370
