You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-9867
About this tag
CVE-2025-9867 is a medium-severity vulnerability in the Downloads component of Chrome for Android, classified as an inappropriate implementation that enables UI spoofing. This flaw was addressed in Chrome 140, released as part of Google's September 2025 patch cycle. Users of Chromium-based browsers on both mobile and desktop platforms are advised to update immediately to eliminate the risk. The tag covers discussions about the vulnerability details, affected versions, and the importance of applying the patch to maintain browser security.
Google and the Chromium project have patched CVE-2025-9867, a medium-severity inappropriate implementation bug in the Downloads component that can be abused for UI spoofing on Chrome for Android, and users should update their mobile and desktop Chromium-based browsers immediately to eliminate...