Cybersecurity Threat Advisory: Google Chrome Zero-Day Vulnerability
Barracuda Networks, Thursday, June 12th, 2025
Google has issued a security update for Chrome desktop to address CVE-2025-5419, which has a CVSS score of 8.8. It is a critical zero-day flaw in the V8 JavaScript engine that is actively exploited by attackers.
Continue to read this Cybersecurity Threat Advisory to learn how to keep your environment safe.
What is the threat?
CVE-2025-5419 is an out-of-bounds read and write issue in the V8 JavaScript and WebAssembly engine. Using a maliciously crafted HTML page, threat actors can exploit this vulnerability, giving remote attackers to achieve heap corruption. This type of vulnerability can cause memory corruption, potentially allowing attackers to execute arbitrary code within the browser, posing a significant risk to the user's system.