VDB
CISA-2025-1922
CISA-2025-1922
PUBLISHED
CVSS 4.3 MEDIUM
Reported by Chrome · Published March 5, 2025
Inappropriate implementation in Selection in Google Chrome on Android prior to 134.0.6998.35 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)
Risk Scores
CVSS 3.1
4.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Chrome | 134.0.6998.35 | |
| Chrome | 134.0.6998.35, 134.0.6998.35 |
Timeline
- Mar 5, 2025 CVE Published
- Mar 5, 2025 CVE Updated