Google Releases Security Update for Chrome

Security update addresses an exploited high severity vulnerability in Google Chrome

Threat ID:: CC-4718
Threat Severity:: Medium
Published:: 18 November 2025 11:02 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Security update addresses an exploited high severity vulnerability in Google Chrome

Affected platforms

The following platforms are known to be affected:

Google Chrome for Windows, macOS and Linux

All prior to 142.0.7444.175/.176 for Windows
All prior to 142.0.7444.176 for macOS
All prior to142.0.7444.175 for Linux

Threat details

Exploitation of CVE-2025-13223

Google is aware that an exploit for CVE-2025-13223 exists in the wild.

Introduction

Google has released security updates for Chrome to address two high severity vulnerabilities in the V8 JavaScript engine.

CVE-2025-13223 - Type Confusion in V8 - High severity - Google is aware an exploit exists in the wild.
CVE-2025-13224 - Type Confusion in V8 - High severity

Remediation advice

Affected organisations are encouraged to review Google's Stable Channel Update for Desktop 17 advisory and apply the relevant updates as soon as possible.

Definitive source of threat updates

https://chromereleases.googleblog.com/2025/11/stable-channel-update-for-desktop_17.html

CVE Vulnerabilities

Status Published

CVE-2025-13223

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Status Published

CVE-2025-13224

Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Last edited: 18 November 2025 11:02 am