CVE-2025-12036
HIGH8.8EPSS 0.08%chromium - security update
Published: 11/6/2025Modified: 4/28/2026
Also known as:DSA-6046-1DEBIAN-CVE-2025-12036DEBIAN-CVE-2025-12428DEBIAN-CVE-2025-12429DEBIAN-CVE-2025-12430DEBIAN-CVE-2025-12431DEBIAN-CVE-2025-12432DEBIAN-CVE-2025-12433DEBIAN-CVE-2025-12434DEBIAN-CVE-2025-12435DEBIAN-CVE-2025-12436DEBIAN-CVE-2025-12437DEBIAN-CVE-2025-12438DEBIAN-CVE-2025-12439DEBIAN-CVE-2025-12440DEBIAN-CVE-2025-12441DEBIAN-CVE-2025-12443DEBIAN-CVE-2025-12444DEBIAN-CVE-2025-12445DEBIAN-CVE-2025-12446DEBIAN-CVE-2025-12447DEBIAN-CVE-2025-13226DEBIAN-CVE-2025-13227DEBIAN-CVE-2025-13228DEBIAN-CVE-2025-13229DEBIAN-CVE-2025-13230
Description
Out of bounds memory access in V8 in Google Chrome prior to 141.0.7390.122 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
Affected packages (3)
- Debian/chromiumfrom 0
- Debian/chromiumfrom 0, < 141.0.7390.122-1~deb12u1
- Debian/chromiumfrom 0, < 142.0.7444.59-1~deb12u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |