Security Advisory

CVE-2025-8882

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-13 02:43:45

Last updated 2026-02-26 17:48:41

Assigner Chrome

State PUBLISHED

Description

Use after free in Aura in Google Chrome prior to 139.0.7258.127 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)

← Browse all CVEs View on cve.org ↗