What the vulnerability does

01Description

Heap buffer overflow in HTML in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Key dates

02Disclosure timeline

May 5, 2025 CVE published
May 6, 2025 Record updated