How many Chrome zero-day vulnerabilities have been discovered in 2025?

CVE-2025-6554 is the fourth zero-day flaw discovered in Chrome since the beginning of 2025, indicating a concerning pattern of actively exploited vulnerabilities in the browser.

What can attackers do with this Chrome vulnerability?

Type confusion vulnerabilities like CVE-2025-6554 enable attackers to trick the browser into misinterpreting memory types, potentially leading to remote code execution, sandbox escape, and full system compromise through malicious HTML pages.

What does it mean that Google's TAG discovered this vulnerability?

Since Google's Threat Analysis Group typically investigates serious threats like government-backed attacks, it's possible that CVE-2025-6554 is being exploited in targeted and potentially state-sponsored operations rather than general cybercriminal activity.

What should Chrome users do about this vulnerability?

Users are strongly advised to update their Chrome browser as soon as possible to the latest version to protect against this actively exploited vulnerability. The update should be applied immediately when available.

What is a type confusion vulnerability in browsers?

Type confusion vulnerabilities occur when a program incorrectly interprets the type of data in memory. In browsers like Chrome, this can allow attackers to manipulate how the JavaScript engine processes data, potentially leading to memory corruption and code execution.

Why isn't Google releasing detailed exploit information for CVE-2025-6554?

As with typical Google security practices, detailed exploit information is being withheld until a majority of users have applied the security update. This prevents potential misuse by malicious actors while the vulnerability remains unpatched on many systems.

What is Chrome's V8 engine and why is it significant?

V8 is Chrome's JavaScript and WebAssembly engine that executes code from web pages. Vulnerabilities in V8 are particularly serious because they can affect how JavaScript code runs in the browser, potentially allowing attackers to escape browser security controls and access the underlying system.

How does this vulnerability get exploited?

CVE-2025-6554 can be exploited remotely through malicious HTML pages. When users visit a compromised or malicious website, the type confusion flaw in the V8 engine can be triggered to perform arbitrary read and write operations, potentially compromising the user's system.

Is this Chrome vulnerability being actively exploited in the wild?

Yes, CVE-2025-6554 is confirmed to be actively exploited in the wild. This means attackers are already using this vulnerability to compromise systems, making it critical for users to update their browsers immediately.

How can I check if my Chrome browser is vulnerable?

You can check your Chrome version by clicking the three dots menu, going to Help > About Google Chrome. If your version is older than 138.0.7204.96/.97 for Windows, 138.0.7204.92/.93 for Mac, or 138.0.7204.96 for Linux, you should update immediately.

What is the severity level of this Chrome vulnerability?

CVE-2025-6554 has a CVSS score of 8.1, which is classified as high severity. Combined with the fact that it's actively being exploited and can lead to full system compromise, this makes it a critical security issue requiring immediate attention.

Attack

Google patches actively exploited flaw in Chrome

Q: What is the actively exploited Chrome vulnerability that Google patched?

Google has patched an actively exploited vulnerability tracked as CVE-2025-6554 with a CVSS score of 8.1. It's a type confusion flaw in Chrome's V8 JavaScript and WebAssembly engine that allows remote attackers to perform arbitrary read and write operations through malicious HTML pages.

Q: Which Chrome versions fix the CVE-2025-6554 vulnerability?

Google has released security patches in Chrome versions 138.0.7204.96/.97 for Windows, 138.0.7204.92/.93 for Mac, and 138.0.7204.96 for Linux. These updates are being rolled out over the coming days and weeks.

published: July 1, 2025

Take action: One more urgent patch for Chrome - Google is again patching an actively exploited flaw in Chrome, and exploitation is just a visit to a malicious site. DONT WAIT! Patch all your Chrome and Chromium browsers (Edge, Opera, Brave, Vivaldi...). Updating the browser is easy, all your tabs reopen after the patch.

Learn More

Google has released security updates to patch an actively exploited vulnerability in Chrome browser. This is the fourth zero-day flaw discovered in Chrome since the beginning of 2025

The vulnerability is tracked as CVE-2025-6554 (CVSS score 8.1) - a type confusion flaw in Chrome's V8 JavaScript and WebAssembly engine that allows remote attackers to perform arbitrary read and write operations through malicious HTML pages.

Type confusion vulnerabilities enable attackers to trick the browser into misinterpreting memory types, leading to remote code execution, sandbox escape, and full system compromise.

The security flaw was discovered and reported by Clément Lecigne of Google's Threat Analysis Group (TAG) on June 25, 2025. Google's TAG typically investigates serious threats like government-backed attacks. So it's possible the flaw is being exploited in targeted and potentially state-sponsored operations.

Google has released the security patches in Chrome versions 138.0.7204.96/.97 for Windows, 138.0.7204.92/.93 for Mac, and 138.0.7204.96 for Linux, which are being rolled out over the coming days and weeks. Users are strongly advised to update their Chrome browser ASAP

As with typical Google security practices, detailed exploit information is being withheld until a majority of users have applied the security update, preventing potential misuse by malicious actors while the vulnerability remains unpatched on many systems.

Google patches actively exploited flaw in Chrome

Read More
Critical Adobe Experience Manager flaw actively exploited
Critical nginx-ui Vulnerability CVE-2026-33032 Under Active Exploitation
CISA warns of actively exploited critical flaws in …
Gogs Zero-Day vulnerability actively exploited
Critical SAP S/4HANA code injection vulnerability exploited in …