Google fixes type confusion flaw in Chrome browser | Computer Weekly
Briefly

An emergency update for Chrome was released by Google due to the identification of CVE-2025-6554, a zero-day vulnerability in the V8 JavaScript engine. This high-severity type confusion flaw could permit remote attackers to perform arbitrary read or write actions via specially crafted HTML pages. Chrome users might be prone to malware if lured to malicious websites. The update was made available shortly after the vulnerability was discovered, although further details were not shared due to its active exploitation.
Google has pushed an emergency update to Chrome after identifying CVE-2025-6554, an actively exploited zero-day vulnerability in the V8 JavaScript engine.
CVE-2025-6554 is a type confusion flaw that, if left unchecked, could allow remote attackers to read or write actions via specially crafted HTML.
Vulnerable Chrome users lured into attacker-controlled websites may face malware installations or other malicious actions, including data theft.
Google is aware that an exploit for CVE-2025-6554 exists in the wild, yet no specific technical details were provided regarding the issue.
Read at ComputerWeekly.com
[
|
]