Security Advisory

CVE-2025-13107

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-14 02:29:58
Last updated 2025-11-14 15:35:36
Assigner Chrome
State PUBLISHED

Description

Inappropriate implementation in Compositing in Google Chrome prior to 140.0.7339.80 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)