We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2025-1704



Description

ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition.

Reserved 2025-02-25 | Published 2025-04-16 | Updated 2025-05-08 | Assigner ChromeOS

Problem types

Use-After-Free (UAF)

Product status

15823.23.0 before 15823.23.0
affected

References

issuetracker.google.com/issues/359915523

issues.chromium.org/issues/b/359915523

cve.org (CVE-2025-1704)

nvd.nist.gov (CVE-2025-1704)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2025-1704

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.