Korean
<< Back
VID 28966
Severity 40
Port 139,445
Protocol TCP
Class SMB
Detailed Description The version of Google Chrome installed on the remote Windows host is prior to 138.0.7204.96. It is, therefore, affected by a vulnerability as referenced in the 2025_06_stable-channel-update-for-desktop_30 advisory.

- Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2025-6554)

* References:
https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop_30.html
https://crbug.com/427663123

* Platforms Affected:
Google Chrome versions prior to 138.0.7204.96
Microsoft Windows Any version
Recommendation Upgrade to the latest version Google Chrome (138.0.7204.96 or later), available from the Google Web site at http://www.google.com/chrome/
Related URL CVE-2025-6554 (CVE)
Related URL (SecurityFocus)
Related URL (ISS)