CVE-2025-0291

HIGH Year: 2025
CVSS v3 Score
8.3
High
Weakness Type
CWE-843
View all →

Vulnerability Description

Type Confusion in V8 in Google Chrome prior to 131.0.6778.264 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

Related Vulnerabilities

CVE-2024-5274

HIGH
CVSS:8.3(High)

Type Confusion in V8 in Google Chrome prior to 125.0.6422.112 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)

CWE-8432024

CVE-2024-27236

HIGH
CVSS:8.4(High)

In aoc_unlocked_ioctl of aoc.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User inter...

CWE-8432024

CVE-2017-0037

HIGH
CVSS:8.1(High)

Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the Layout::MultiColumnBoxBuilder::HandleColumnBreakOnColumnSpanningElement function in mshtml.dll, which allows...

CWE-8432017

CVE-2020-36460

HIGH
CVSS:8.1(High)

An issue was discovered in the model crate through 2020-11-10 for Rust. The Shared data structure has an implementation of the Send and Sync traits without regard for the inner type.

CWE-8432020

CVE-2023-35297

HIGH
CVSS:8.1(High)

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

CWE-8432023

CVE-2023-4068

HIGH
CVSS:8.1(High)

Type Confusion in V8 in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High)

CWE-8432023