| VID |
28966 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Google Chrome installed on the remote Windows host is prior to 138.0.7204.96. It is, therefore, affected by a vulnerability as referenced in the 2025_06_stable-channel-update-for-desktop_30 advisory.
- Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) (CVE-2025-6554)
* References: https://chromereleases.googleblog.com/2025/06/stable-channel-update-for-desktop_30.html https://crbug.com/427663123
* Platforms Affected: Google Chrome versions prior to 138.0.7204.96 Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Google Chrome (138.0.7204.96 or later), available from the Google Web site at http://www.google.com/chrome/ |
| Related URL |
CVE-2025-6554 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|