Primary

Context

Google Chrome GPU Heap Buffer Overflow Vulnerability Allowing Potential Heap Corruption Exploitation

Vulnerability

Patched

A heap buffer overflow vulnerability has been identified in the GPU component of Google Chrome on Android, affecting versions prior to 133.0.6943.126. This vulnerability allows remote attackers to potentially exploit heap corruption by using a crafted HTML page.

Impact

Exploitation of this vulnerability leads to a heap buffer overflow, causing memory corruption in the GPU process, which can be exploited to execute arbitrary code.

Reproduction

The vulnerability can be reproduced by opening the affected version of Google Chrome on an Android device and loading a specific HTML file that triggers the heap buffer overflow in the GPU component.

Remediation

Users can update to Google Chrome version 133.0.6943.126 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

5.8

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

5.8

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Google Chrome GPU Heap Buffer Overflow Vulnerability Allowing Potential Heap Corruption Exploitation

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating