Skip to main content

CVE-2025-5958: Use after free in Google Chrome

High
VulnerabilityCVE-2025-5958cvecve-2025-5958
Published: Wed Jun 11 2025 (06/11/2025, 00:54:26 UTC)
Source: CVE Database V5
Vendor/Project: Google
Product: Chrome

Description

Use after free in Media in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

AI-Powered Analysis

AILast updated: 07/11/2025, 13:47:23 UTC

Technical Analysis

CVE-2025-5958 is a high-severity use-after-free vulnerability identified in the Media component of Google Chrome versions prior to 137.0.7151.103. This vulnerability arises when the browser improperly manages memory, specifically freeing an object while it is still accessible, leading to heap corruption. An attacker can exploit this flaw by crafting a malicious HTML page that triggers the use-after-free condition during media processing. Successful exploitation can allow remote attackers to execute arbitrary code within the context of the browser, potentially compromising confidentiality, integrity, and availability of the affected system. The vulnerability requires no privileges and no authentication, but does require user interaction in the form of visiting a malicious web page. The CVSS v3.1 base score of 8.8 reflects the high impact on confidentiality, integrity, and availability, combined with the ease of exploitation over the network. Although no known exploits are currently reported in the wild, the nature of the vulnerability and its presence in a widely used browser make it a significant threat vector. The vulnerability was publicly disclosed on June 11, 2025, and users are advised to update to Chrome version 137.0.7151.103 or later where the issue is patched.

Potential Impact

For European organizations, this vulnerability poses a substantial risk due to the widespread use of Google Chrome as a primary web browser across enterprises, government agencies, and critical infrastructure sectors. Exploitation could lead to remote code execution, enabling attackers to steal sensitive data, implant persistent malware, or disrupt business operations. Given the browser’s role as a gateway to web applications and cloud services, a successful attack could facilitate lateral movement within corporate networks or compromise user credentials. The requirement for user interaction (visiting a malicious page) means phishing campaigns or compromised websites could serve as vectors, increasing the attack surface. Organizations handling sensitive personal data under GDPR could face regulatory and reputational consequences if breaches occur. Additionally, sectors such as finance, healthcare, and public administration, which rely heavily on secure web access, are particularly vulnerable to the consequences of such an exploit.

Mitigation Recommendations

European organizations should prioritize immediate patching by upgrading all Google Chrome installations to version 137.0.7151.103 or later. Beyond patching, organizations should implement network-level protections such as web filtering to block access to known malicious sites and employ advanced threat detection systems capable of identifying anomalous browser behavior indicative of exploitation attempts. User awareness training should emphasize the risks of interacting with untrusted web content and phishing prevention. Deploying endpoint detection and response (EDR) solutions can help detect and contain exploitation attempts early. Additionally, organizations should consider sandboxing browser processes and restricting execution privileges to limit the impact of potential code execution. Regular vulnerability scanning and asset inventory management will ensure that all Chrome instances are identified and updated promptly. For high-risk environments, disabling or restricting media playback features in the browser where feasible can reduce the attack surface.

Need more detailed analysis?Get Pro

Technical Details

Data Version
5.1
Assigner Short Name
Chrome
Date Reserved
2025-06-09T19:57:49.869Z
Cvss Version
null
State
PUBLISHED

Threat ID: 6848d81a3cd93dcca8315ea0

Added to database: 6/11/2025, 1:12:58 AM

Last enriched: 7/11/2025, 1:47:23 PM

Last updated: 8/5/2025, 4:20:39 AM

Views: 24

Actions

PRO

Updates to AI analysis are available only with a Pro account. Contact root@offseq.com for access.

Please log in to the Console to use AI analysis features.

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Latest Threats