CVE-2025-6558
Google Chromium ANGLE and GPU Improper Input Validation Vulnerability
CVSS
—
Sin CVSS
EPSS
9.2%
p95
KEV
SÍ
22 jul 2025
Exploit Today
78
0-100
Publicado: — · Última mod.: —
Producto
Google / Chromium
Vulnerabilidad
Google Chromium ANGLE and GPU Improper Input Validation Vulnerability
Añadido a KEV
22 jul 2025
Remediar antes de
12 ago 2025
Uso conocido en ransomware
No
Descripción resumida
Google Chromium contains an improper input validation vulnerability in ANGLE and GPU. This vulnerability could allow a remote attacker to potentially perform a sandbox escape via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.
Acción requerida
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notas
https://chromereleases.googleblog.com/2025/07/stable-channel-update-for-desktop_15.html ; https://nvd.nist.gov/vuln/detail/CVE-2025-6558