You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-10585
About this tag
CVE-2025-10585 is a type-confusion vulnerability in Google Chromium's V8 JavaScript and WebAssembly engine that has been actively exploited in the wild. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added this flaw to its Known Exploited Vulnerabilities (KEV) Catalog, raising the priority for federal agencies and organizations to patch. Google released an emergency Chrome update to address the issue, and because Microsoft Edge is Chromium-based, Windows users and enterprises must ensure their Edge builds include the upstream fix. This tag covers discussions about the vulnerability, its exploitation, and the urgent patching required for Chromium-based browsers.
CISA has added CVE-2025-10585 — a type‑confusion vulnerability in Google Chromium’s V8 engine — to its Known Exploited Vulnerabilities (KEV) Catalog after evidence showed the flaw was being actively exploited in the wild, elevating remediation priority for federal agencies and placing an urgent...
Google pushed an emergency Chrome update to address CVE-2025-10585, a type confusion vulnerability in the V8 JavaScript engine that Google says is being actively exploited in the wild — and because Microsoft Edge is Chromium-based, Windows users and enterprises must confirm their Edge builds...