Multiple Google Chrome Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2025-5958 CVSS:8.8

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in Media. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2025-5959 CVSS:8.8

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion in V8. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact

Code Execution

Indicators of Compromise

CVE

CVE-2025-5958
CVE-2025-5959

Affected Vendors

Google

Affected Products

Google Chrome - 137.0

Remediation

Upgrade to the latest version of Google Chrome, available from the Google Chrome Releases Website.

Google Chrome Releases Website

Windows CLFS Driver Vulnerability Allows Privilege Escalation

CVE-2025-33053 – Microsoft WebDAV Zero-Day Vulnerability Exploit in the Wild

Multiple Google Chrome Vulnerabilities

Severity

Medium

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan