Multiple Google Chrome Vulnerabilities

Severity

High

Analysis Summary

CVE-2025-5280 CVSS:8.8

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write in V8. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2025-5281 CVSS:6.5

Google Chrome could allow a remote attacker to bypass security restrictions, caused by inappropriate implementation in BFCache. By persuading a victim to visit a specially crafted Web site, an attacker could exploit this vulnerability to bypass security restrictions.

CVE-2025-5283 CVSS:8.8

Google Chrome could allow a remote attacker to execute arbitrary code on the system, caused by a use-after-free in libvpx. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact

Code Execution
Security Bypass

Indicators of Compromise

CVE

CVE-2025-5280
CVE-2025-5281
CVE-2025-5283

Affected Vendors

Google

Affected Products

Google Chrome - 136.0.7103.59

Remediation

Refer to Google Chrome Advisory for patch, upgrade, or suggested workaround information.

Google Chrome Advisory

CVE-2025-5215 – D-Link DCS-5020L Vulnerability

Multiple IBM Security Guardium Vulnerabilities

Multiple Google Chrome Vulnerabilities

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan