Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

Google Chrome V8 Type Confusion Vulnerability Allowing Arbitrary Read/Write

Vulnerability

Exploited

Patched

A type confusion vulnerability has been identified in the V8 engine of Google Chrome, affecting versions prior to 138.0.7204.96. This vulnerability allows remote attackers to perform arbitrary read and write operations by exploiting a crafted HTML page.

Impact

Exploitation of this vulnerability could lead to type confusion, allowing for arbitrary read and write operations, which could be leveraged for more severe attacks, such as executing arbitrary code.

Remediation

Users can update to Google Chrome version 138.0.7204.96 or later to address this vulnerability. Instructions for updating Chrome are available on the official Google Chrome support page.

Added: Jun 30, 2025, 10:18 PM

Updated: Jul 2, 2025, 5:10 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

6.1

remediation

7.7

relevance

0.2

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

7.5

exploitability

6.1

remediation

7.7

relevance

0.2

threat

8.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

Google Chrome V8 Type Confusion Vulnerability Allowing Arbitrary Read/Write

Vulnerability

Impact

Remediation

Affected Products

Google Chrome

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating