Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 136.0.7103.113 allowed a remote attacker to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
Metrics
Affected Vendors & Products
References
History
Mon, 25 Aug 2025 22:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
Mon, 25 Aug 2025 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-732 | |
Metrics |
cvssV3_1
|
Sat, 23 Aug 2025 11:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Google
Google chrome Microsoft Microsoft windows |
|
Vendors & Products |
Google
Google chrome Microsoft Microsoft windows |
Fri, 22 Aug 2025 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 136.0.7103.113 allowed a remote attacker to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High) | |
References |
|

Status: PUBLISHED
Assigner: Chrome
Published:
Updated: 2025-08-26T03:55:23.509Z
Reserved: 2025-05-12T20:31:16.867Z
Link: CVE-2025-4609

Updated: 2025-08-25T12:19:59.566Z

Status : Analyzed
Published: 2025-08-22T21:15:31.977
Modified: 2025-08-25T20:44:35.443
Link: CVE-2025-4609

No data.

Updated: 2025-08-23T10:55:04Z