CVE-2025-13227

CVE-2025-13227 describes a Type Confusion in V8 used by Google Chrome, prior to version 142.0.7444.59, which could allow a remote attacker to trigger heap corruption via a crafted HTML page. Multiple connected sources corroborate the issue as a Chrome/V8 vulnerability affecting Chrome versions be...

CVE-2025-13227

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13226

Type Confusion in V8 in Google Chrome prior to 142.0.7444.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13224

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

AZL-70604 CVE-2025-13224 affecting package nodejs 20.14.0-13

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13223

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13224

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

EUVD-2025-197892

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13224

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13223

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13223

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

CVE-2025-13223

CVE-2025-13223 is a Type Confusion in V8 within Google Chrome/Chromium (prior to 142.0.7444.175) that can lead to heap corruption via a crafted HTML page. The issue affects Chromium-based Chrome, with root cause described as V8 type confusion; high severity and potential remote code/impact on hea...

MGASA-2025-0300 Updated firefox packages fix security vulnerabilities

Race condition in the Graphics component. CVE-2025-13012 Mitigation bypass in the DOM: Core & HTML component. CVE-2025-13013 CVE-2025-13014: Use-after-free in the Audio/Video component. CVE-2025-13014 Spoofing issue in Firefox. CVE-2025-13015 Incorrect boundary conditions in the JavaScript:...

CVE-2025-64758

@dependencytrack/frontend is a Single Page Application SPA used in Dependency-Track, an open source Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain. Since version 4.12.0, Dependency-Track users with the SYSTEMCONFIGURATION permission...

CVE-2025-64308

The Brightpick Mission Control web application exposes hardcoded credentials in its client-side JavaScript bundle...

PT-2025-47217

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 142.0.7444.175 Description A type confusion issue exists in the V8 JavaScript engine, which is the component that handles JavaScript execution. Type confusion occurs when a program accesses a resource using an...

PT-2025-47186

Name of the Vulnerable Software and Affected Versions Dependency-Track versions prior to 4.13.6 Description Dependency-Track, an open source Component Analysis platform, contains a weakness in its frontend application. Specifically, versions before 4.13.6 do not properly sanitize HTML when...

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google Inc. Google Chrome suffers from a type obfuscation vulnerability that stems from V8 type obfuscation, which can be exploited by an attacker to cause heap corruption...

Dependency-Track Front-End 跨站脚本漏洞

Dependency-Track Front-End is a Dependency-Track open source front-end UI for dependency tracking. A cross-site scripting vulnerability exists in Dependency-Track Front-End versions 4.12.0 through prior to 4.13.6, which stems from improper HTML cleanup and could lead to arbitrary JavaScript...

Google Chrome < 142.0.7444.175 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 142.0.7444.175. It is, therefore, affected by multiple vulnerabilities as referenced in the 202511stable-channel-update-for-desktop17 advisory. - Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a...