VDB
CVE-2025-0611
CVE-2025-0611
PUBLISHED
Chrome ist ein Internet-Browser von Google. Edge ist ein Internet-Browser von Microsoft.
EPSS 0.64% · 70.9th percentile
Risk Scores
EPSS Score
0.64%
70.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SUSE | SUSE openSUSE | |
| Fedora | Fedora Linux | |
| Microsoft | Microsoft Edge 132.0.2957.127 | |
| Google Chrome <132.0.6834.110 | ||
| Debian | Debian Linux |
Exploit Intelligence
- CIRCL seen: CVE-2025-0611 (circl-sighting)
- CIRCL seen: CVE-2025-0611 (circl-sighting)
- CIRCL seen: CVE-2025-0611 (circl-sighting)
- CIRCL seen: CVE-2025-0611 (circl-sighting)
- CIRCL seen: CVE-2025-0611 (circl-sighting)
- CIRCL seen: CVE-2025-0611 (circl-sighting)
- https://issues.chromium.org/issues/386143468 (circl)
- https://chromereleases.googleblog.com/2025/01/stable-channel-update-for-desktop_22.html (circl)
- Checks for CVE-2025-0108, an authentication bypass vulnerability in Palo Alto Networks PAN-OS. The script attempts to access the following endpoint: `/unauth/%252e%252e/php/ztp_gate.php/PAN_help/x.css` If it returns a `200 OK` and contains "Zero Touch Provisioning," the system is considered vulnerable. (nmap-nse)
- Checks for CVE-2025-0108, an authentication bypass vulnerability in Palo Alto Networks PAN-OS. The script attempts to access the following endpoint: `/unauth/%252e%252e/php/ztp_gate.php/PAN_help/x.css` If it returns a `200 OK` and contains "Zero Touch Provisioning," the system is considered vulnerable. (nmap-nse)
…and 5 more exploits
Timeline
- Jan 20, 2025 CVE ID Reserved
- Jan 22, 2025 PoC Published
- Jan 22, 2025 CVE Published
- Jan 22, 2025 PoC Published
- Jan 22, 2025 PoC Published
- Jan 23, 2025 EPSS Score
- Jan 26, 2025 PoC Published
- Jan 27, 2025 PoC Published
- Jan 27, 2025 PoC Published
- Feb 6, 2025 CVE Updated
- Feb 7, 2025 EPSS Score
- Feb 19, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0178.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0178 advisory
- https://chromereleases.googleblog.com/2025/01/stable-channel-update-for-desktop_22.html advisory
- https://lists.debian.org/debian-security-announce/2025/msg00010.html advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-eb2f4a2306 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-83d7070428 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-c43268fd94 advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-5d89c826ff advisory
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-593db38631 advisory
- https://learn.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security#january-24-2025 advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/YIFQVN4TRWTN3PTWT3IMWFQQI7NCFU5D/ advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/YIFQVN4TRWTN3PTWT3IMWFQQI7NCFU5D/ advisory
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/SBQCSZYLCJRVUBDS6YRAWARY6HP5BYMG/ advisory