Google Patches Two Critical Chrome Vulnerabilities
Google has recently patched two critical vulnerabilities in Chrome, addressing a use-after-free (UAF) bug and another issue. The UAF vulnerability, identified as CVE-2025-10200, was reported by an anonymous expert and Sahan Fernando, who earned a $30,000 reward. Another researcher, Yingtong Dai, discovered a UAF bug in the Service Worker component and received a $43,000 reward for their findings.
The vulnerabilities were reported on August 22, 2025, and Google swiftly addressed them in a Chrome update. The update, version 140.0.7339.127/.128 for Windows, 140.0.7339.132/.133 for macOS, and 140.0.7339.127 for Linux, patches both CVE-2025-10200 and CVE-2025-10201. The UAF bug could potentially lead to code execution, making it a serious threat. However, Google did not disclose if these vulnerabilities have been actively exploited in attacks.
Google has thanked the researchers for their responsible disclosure and has urged users to update their Chrome browsers to the latest version to ensure their security. The tech giant continues to work diligently to address vulnerabilities and maintain the stability and security of its products.
Read also:
- Tata Electronics & Bosch Ink MoU to Boost India's Electronics Manufacturing
- Tata Motors Establishes 25,000 Electric Vehicle Charging Stations Nationwide in India
- PawWire Unites 100+ Pet Brands in New Discovery Platform, Supports Animal Welfare
- Strengthening Defense against Multi-faceted menaces in the Age of Authority-driven Technology
