GCVE-VVD-NCSC-2025-371

Advisory PublishedCVSS 8.8/10

Vulnetix · Advisory published November 18, 2025

A high severity vulnerability in V8 of Google Chrome prior to version 142.0.7444.175 allows remote attackers to exploit heap corruption via a specially crafted HTML page.

Download JSON Open in Console

Weaknesses (CWE)

CWE-843Access of Resource Using Incompatible Type ('Type Confusion')

Risk Scores

CVSS 3.1

8.8/10

High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions	Platforms
Google	vers:unknown/*	—	—

Aliases

CVE-2025-13224 CVE-2025-13223

Transitive aliases

AZL-70604 DSA-6060-1 DEBIAN-CVE-2025-13224 DEBIAN-CVE-2025-13223 VVD-ANCHORE-2025-13223 EUVD-2025-197896 BDU:2025-14497 AZL-70553 VVD-ANCHORE-2025-13224 VVD-CISA-2025-13224 GHSA-fvx3-7348-92qj VVD-CISA-2025-13223 EUVD-2025-197892 BDU:2025-14498 GHSA-w5fc-g575-v9qj

References

advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON