First published: Thu Oct 31 2024(Updated: )
<p>This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see <a href="https://chromereleases.googleblog.com/2024">Google Chrome Releases</a> for more information.</p>
Credit: Philipp Beer (TU Wien) chrome-cve-admin@google.com
Affected Software | Affected Version | How to fix |
---|---|---|
Google Chrome | <135.0.7049.52 | 135.0.7049.52 |
Microsoft Edge Beta | <135.0.3179.54 | |
Microsoft Edge | ||
<135.0.3179.54 | ||
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
The severity of CVE-2025-3067 is classified as Medium.
To fix CVE-2025-3067, update Google Chrome on Android to version 135.0.7049.52 or later.
CVE-2025-3067 is a privilege escalation vulnerability due to inappropriate implementation in Custom Tabs in Google Chrome on Android.
CVE-2025-3067 affects users of Google Chrome on Android versions prior to 135.0.7049.52.
An attacker exploiting CVE-2025-3067 could perform privilege escalation by convincing a user to engage in specific UI gestures.