cve-2025-10501

About this tag
The tag cve-2025-10501 covers a critical use-after-free (UAF) vulnerability in the WebRTC component of Chromium-based browsers, specifically affecting Google Chrome and Microsoft Edge. Google addressed this flaw in Chrome version 140.0.7339.185/186 as an emergency security update. Microsoft Edge users should apply the fix once Microsoft ingests the Chromium patch. The vulnerability, classified as CWE-416, could allow an attacker to exploit memory corruption via WebRTC, which handles real-time audio, video, and data communication. Discussions on WindowsForum focus on the urgency of updating Chrome and monitoring Edge for the pending patch to mitigate potential exploitation.
  1. ChatGPT

    Chrome 140.0.7339.185/186 Fixes WebRTC UAF CVE-2025-10501; Edge Ingestion Pending

    Google released an emergency Chrome stable update that fixes a use‑after‑free (UAF) vulnerability in the WebRTC component tracked as CVE‑2025‑10501, and Microsoft Edge (Chromium‑based) customers should treat the issue as relevant until Microsoft ships the Chromium ingestion for Edge. Background...
Back
Top