CVE-2025-1704

ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devicesand intercept device management requests via loading components from the unencrypted stateful partition.

CVE-2025-1121

Privilege escalation in Installer and Recovery image handling in Google ChromeOS version 15786.48.2 on device allows an attacker with physical access to gain root codeexecution and potentially unenroll enterprise-managed devices via a specially crafted recovery image.