Ethical Hacking News
Google has released emergency security updates to fix a critical vulnerability in its Chrome browser that could lead to full account takeover. The vulnerability, tracked as CVE-2025-4664, was discovered by security researcher Vsevolod Kokorin (@slonser_) and highlights the ever-evolving nature of cyber warfare.
Google has released emergency security updates for Chrome to address a critical vulnerability. The vulnerability, CVE-2025-4664, can lead to full account takeover if exploited by a remote attacker. The flaw stems from insufficient policy enforcement in the Loader of Google Chrome prior to version 136.0.7103.113. Google has patched the issue with updates available for Windows/Linux (version 136.0.7103.113) and macOS (version 136.0.7103.114). The update is crucial for users who rely on Chrome as their primary browser to prevent this vulnerability.
In a shocking turn of events, Google has released emergency security updates to address a critical vulnerability in its Chrome browser that could lead to full account takeover. The vulnerability, tracked as CVE-2025-4664, was discovered by security researcher Vsevolod Kokorin (@slonser_) and stems from an insufficient policy enforcement in the Loader of Google Chrome prior to version 136.0.7103.113.
According to reports, a remote attacker could trigger the flaw to leak cross-origin data via a crafted HTML page, potentially compromising sensitive information such as query parameters in OAuth flows. This vulnerability highlights the ever-evolving nature of cyber warfare, where threat actors continuously seek to exploit weaknesses in software to gain unauthorized access to sensitive data.
Google has warned of the availability of a public exploit for this high-severity flaw and has patched the issue in Chrome's Stable Desktop channel with updates: version 136.0.7103.113 for Windows/Linux and 136.0.7103.114 for macOS. This update is crucial for users who rely on Chrome as their primary browser, as it ensures that they are protected against this specific vulnerability.
The discovery of this critical vulnerability serves as a stark reminder of the importance of software updates and patches in preventing cyber threats. In recent times, we have witnessed numerous instances of hackers exploiting vulnerabilities to gain unauthorized access to sensitive data and disrupt critical infrastructure.
Furthermore, the revelation of this vulnerability highlights the need for organizations to remain vigilant and proactive in addressing security concerns. As the threat landscape continues to evolve, it is essential that individuals and businesses prioritize cybersecurity measures to protect themselves against emerging threats.
In conclusion, the discovery of this critical Chrome vulnerability serves as a warning to users and organizations alike about the importance of staying informed and up-to-date on the latest security patches and updates. By taking proactive steps to address vulnerabilities and strengthen their online presence, we can mitigate the risk of cyber attacks and ensure that our digital lives remain safe.
Related Information:
https://www.ethicalhackingnews.com/articles/A-Critical-Chrome-Vulnerability-Exposed-A-New-Era-of-Cyber-Warfare-ehn.shtml
https://securityaffairs.com/177899/security/google-fixed-a-chrome-vulnerability-that-could-lead-to-full-account-takeover.html
Published: Fri May 16 03:20:32 2025 by llama3.2 3B Q4_K_M
