What the vulnerability does

01Description

Race in Frames in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

Key dates

02Disclosure timeline

January 15, 2025 CVE published
March 17, 2025 Record updated