Security Advisory

CVE-2025-12436

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-10 20:00:17

Last updated 2025-11-10 20:59:06

Assigner Chrome

State PUBLISHED

Description

Policy bypass in Extensions in Google Chrome prior to 142.0.7444.59 allowed an attacker who convinced a user to install a malicious extension to obtain potentially sensitive information from process memory via a crafted Chrome Extension. (Chromium security severity: Medium)

← Browse all CVEs View on cve.org ↗