What the vulnerability does

01Description

Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

Key dates

02Disclosure timeline

April 16, 2025 CVE published
April 17, 2025 Record updated