Security Advisory

CVE-2025-13637

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-02 19:00:14
Last updated 2025-12-03 00:36:32
Assigner Chrome
State PUBLISHED

Description

Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a crafted HTML page. (Chromium security severity: Low)