Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie

Type deb

Namespace debian

Name chromium

Version 137.0.7151.55-3~deb12u1

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 137.0.7151.68-1~deb12u1

Latest_non_vulnerable_version 147.0.7727.101-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-2rju-kk9j-1kbb

vulnerability_id VCID-2rju-kk9j-1kbb

summary Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5065

reference_id

reference_type

scores

value	0.00102
scoring_system	epss
scoring_elements	0.28053
published_at	2026-04-16T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.27905
published_at	2026-04-24T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.27989
published_at	2026-04-21T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.28036
published_at	2026-04-18T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31726
published_at	2026-04-02T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31676
published_at	2026-04-11T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31634
published_at	2026-04-12T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31598
published_at	2026-04-13T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31672
published_at	2026-04-09T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31771
published_at	2026-04-04T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.3159
published_at	2026-04-07T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31642
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5065

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5065
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5065

reference_url

https://issues.chromium.org/issues/40059071

reference_id

40059071

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:33:16Z/

url

https://issues.chromium.org/issues/40059071

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:33:16Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5065

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2rju-kk9j-1kbb

url VCID-34ga-6n2z-4bcm

vulnerability_id VCID-34ga-6n2z-4bcm

summary Inappropriate implementation in Background Fetch API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5064

reference_id

reference_type

scores

value	0.00128
scoring_system	epss
scoring_elements	0.31959
published_at	2026-04-24T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32169
published_at	2026-04-16T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32147
published_at	2026-04-18T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32121
published_at	2026-04-21T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32264
published_at	2026-04-02T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32302
published_at	2026-04-04T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32126
published_at	2026-04-07T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32176
published_at	2026-04-08T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32203
published_at	2026-04-09T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32206
published_at	2026-04-11T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32167
published_at	2026-04-12T12:55:00Z

value	0.00128
scoring_system	epss
scoring_elements	0.32135
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5064

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5064
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5064

reference_url

https://issues.chromium.org/issues/40058068

reference_id

40058068

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:34:05Z/

url

https://issues.chromium.org/issues/40058068

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:34:05Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5064

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-34ga-6n2z-4bcm

url VCID-54d8-nkk2-nyhf

vulnerability_id VCID-54d8-nkk2-nyhf

summary Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5067

reference_id

reference_type

scores

value	0.00054
scoring_system	epss
scoring_elements	0.16891
published_at	2026-04-24T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16948
published_at	2026-04-16T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.1695
published_at	2026-04-18T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.16988
published_at	2026-04-21T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17167
published_at	2026-04-02T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17219
published_at	2026-04-04T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17
published_at	2026-04-07T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.1709
published_at	2026-04-08T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17147
published_at	2026-04-09T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17122
published_at	2026-04-11T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17074
published_at	2026-04-12T12:55:00Z

value	0.00054
scoring_system	epss
scoring_elements	0.17013
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5067

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5067
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5067

reference_url

https://issues.chromium.org/issues/40075024

reference_id

40075024

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:23:27Z/

url

https://issues.chromium.org/issues/40075024

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:23:27Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5067

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-54d8-nkk2-nyhf

url VCID-8vsf-szma-sbad

vulnerability_id VCID-8vsf-szma-sbad

summary Use after free in Compositing in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5063

reference_id

reference_type

scores

value	0.00457
scoring_system	epss
scoring_elements	0.63974
published_at	2026-04-24T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63921
published_at	2026-04-13T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63955
published_at	2026-04-16T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63965
published_at	2026-04-18T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63902
published_at	2026-04-02T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63929
published_at	2026-04-04T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63887
published_at	2026-04-07T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63937
published_at	2026-04-08T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63956
published_at	2026-04-21T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63968
published_at	2026-04-11T12:55:00Z

value	0.00457
scoring_system	epss
scoring_elements	0.63954
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5063

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5063
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5063

reference_url

https://issues.chromium.org/issues/411573532

reference_id

411573532

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-29T03:55:44Z/

url

https://issues.chromium.org/issues/411573532

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-29T03:55:44Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5063

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8vsf-szma-sbad

url VCID-98mt-7srw-qfh4

vulnerability_id VCID-98mt-7srw-qfh4

summary A vulnerability has been discovered in libvpx, which could lead to execution of arbitrary code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5283.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-5283.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5283

reference_id

reference_type

scores

value	0.00273
scoring_system	epss
scoring_elements	0.50693
published_at	2026-04-24T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50744
published_at	2026-04-21T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50764
published_at	2026-04-18T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50758
published_at	2026-04-16T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50681
published_at	2026-04-02T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50756
published_at	2026-04-11T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50663
published_at	2026-04-07T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50718
published_at	2026-04-13T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50714
published_at	2026-04-09T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50733
published_at	2026-04-12T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50707
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5283

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5283
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5283

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106689
reference_id	1106689
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1106689

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2368749
reference_id	2368749
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2368749

reference_url

https://issues.chromium.org/issues/419467315

reference_id

419467315

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:25:59Z/

url

https://issues.chromium.org/issues/419467315

reference_url	https://security.gentoo.org/glsa/202509-07
reference_id	GLSA-202509-07
reference_type
scores
url	https://security.gentoo.org/glsa/202509-07

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-42

reference_id

mfsa2025-42

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-42

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-43

reference_id

mfsa2025-43

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-43

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-44

reference_id

mfsa2025-44

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-44

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-45

reference_id

mfsa2025-45

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-45

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-46

reference_id

mfsa2025-46

reference_type

scores

value	critical
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2025-46

reference_url	https://access.redhat.com/errata/RHSA-2025:8293
reference_id	RHSA-2025:8293
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8293

reference_url	https://access.redhat.com/errata/RHSA-2025:8308
reference_id	RHSA-2025:8308
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8308

reference_url	https://access.redhat.com/errata/RHSA-2025:8341
reference_id	RHSA-2025:8341
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8341

reference_url	https://access.redhat.com/errata/RHSA-2025:8598
reference_id	RHSA-2025:8598
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8598

reference_url	https://access.redhat.com/errata/RHSA-2025:8599
reference_id	RHSA-2025:8599
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8599

reference_url	https://access.redhat.com/errata/RHSA-2025:8607
reference_id	RHSA-2025:8607
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8607

reference_url	https://access.redhat.com/errata/RHSA-2025:8608
reference_id	RHSA-2025:8608
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8608

reference_url	https://access.redhat.com/errata/RHSA-2025:8628
reference_id	RHSA-2025:8628
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8628

reference_url	https://access.redhat.com/errata/RHSA-2025:8629
reference_id	RHSA-2025:8629
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8629

reference_url	https://access.redhat.com/errata/RHSA-2025:8630
reference_id	RHSA-2025:8630
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8630

reference_url	https://access.redhat.com/errata/RHSA-2025:8631
reference_id	RHSA-2025:8631
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8631

reference_url	https://access.redhat.com/errata/RHSA-2025:8642
reference_id	RHSA-2025:8642
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8642

reference_url	https://access.redhat.com/errata/RHSA-2025:8756
reference_id	RHSA-2025:8756
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8756

reference_url	https://access.redhat.com/errata/RHSA-2025:9071
reference_id	RHSA-2025:9071
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9071

reference_url	https://access.redhat.com/errata/RHSA-2025:9072
reference_id	RHSA-2025:9072
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9072

reference_url	https://access.redhat.com/errata/RHSA-2025:9073
reference_id	RHSA-2025:9073
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9073

reference_url	https://access.redhat.com/errata/RHSA-2025:9074
reference_id	RHSA-2025:9074
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9074

reference_url	https://access.redhat.com/errata/RHSA-2025:9075
reference_id	RHSA-2025:9075
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9075

reference_url	https://access.redhat.com/errata/RHSA-2025:9076
reference_id	RHSA-2025:9076
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9076

reference_url	https://access.redhat.com/errata/RHSA-2025:9077
reference_id	RHSA-2025:9077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9077

reference_url	https://access.redhat.com/errata/RHSA-2025:9118
reference_id	RHSA-2025:9118
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9118

reference_url	https://access.redhat.com/errata/RHSA-2025:9119
reference_id	RHSA-2025:9119
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9119

reference_url	https://access.redhat.com/errata/RHSA-2025:9120
reference_id	RHSA-2025:9120
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9120

reference_url	https://access.redhat.com/errata/RHSA-2025:9122
reference_id	RHSA-2025:9122
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9122

reference_url	https://access.redhat.com/errata/RHSA-2025:9123
reference_id	RHSA-2025:9123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9123

reference_url	https://access.redhat.com/errata/RHSA-2025:9124
reference_id	RHSA-2025:9124
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9124

reference_url	https://access.redhat.com/errata/RHSA-2025:9125
reference_id	RHSA-2025:9125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9125

reference_url	https://access.redhat.com/errata/RHSA-2025:9126
reference_id	RHSA-2025:9126
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9126

reference_url	https://access.redhat.com/errata/RHSA-2025:9127
reference_id	RHSA-2025:9127
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9127

reference_url	https://access.redhat.com/errata/RHSA-2025:9128
reference_id	RHSA-2025:9128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9128

reference_url	https://access.redhat.com/errata/RHSA-2025:9155
reference_id	RHSA-2025:9155
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9155

reference_url	https://access.redhat.com/errata/RHSA-2025:9331
reference_id	RHSA-2025:9331
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9331

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:25:59Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_url	https://usn.ubuntu.com/7551-1/
reference_id	USN-7551-1
reference_type
scores
url	https://usn.ubuntu.com/7551-1/

reference_url	https://usn.ubuntu.com/7991-1/
reference_id	USN-7991-1
reference_type
scores
url	https://usn.ubuntu.com/7991-1/

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5283

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-98mt-7srw-qfh4

url VCID-9q9q-6hv9-zkfc

vulnerability_id VCID-9q9q-6hv9-zkfc

summary Inappropriate implementation in BFCache in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially obtain user information via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5281

reference_id

reference_type

scores

value	0.00213
scoring_system	epss
scoring_elements	0.4381
published_at	2026-04-24T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43935
published_at	2026-04-16T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43926
published_at	2026-04-18T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43858
published_at	2026-04-21T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43897
published_at	2026-04-02T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.4392
published_at	2026-04-04T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43851
published_at	2026-04-07T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43901
published_at	2026-04-08T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43904
published_at	2026-04-09T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43922
published_at	2026-04-11T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43889
published_at	2026-04-12T12:55:00Z

value	0.00213
scoring_system	epss
scoring_elements	0.43873
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5281

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5281
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5281

reference_url

https://issues.chromium.org/issues/417215501

reference_id

417215501

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:27:42Z/

url

https://issues.chromium.org/issues/417215501

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:27:42Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5281

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9q9q-6hv9-zkfc

url VCID-ss8z-vqjp-sff2

vulnerability_id VCID-ss8z-vqjp-sff2

summary Out of bounds write in V8 in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5280

reference_id

reference_type

scores

value	0.00641
scoring_system	epss
scoring_elements	0.70642
published_at	2026-04-24T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70605
published_at	2026-04-16T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70614
published_at	2026-04-18T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70593
published_at	2026-04-21T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70511
published_at	2026-04-02T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70529
published_at	2026-04-04T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70506
published_at	2026-04-07T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70552
published_at	2026-04-08T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70567
published_at	2026-04-09T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.7059
published_at	2026-04-11T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70575
published_at	2026-04-12T12:55:00Z

value	0.00641
scoring_system	epss
scoring_elements	0.70561
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5280

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5280
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5280

reference_url

https://issues.chromium.org/issues/417169470

reference_id

417169470

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-29T03:55:45Z/

url

https://issues.chromium.org/issues/417169470

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-29T03:55:45Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5280

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ss8z-vqjp-sff2

url VCID-vej8-dj8m-a3cu

vulnerability_id VCID-vej8-dj8m-a3cu

summary Inappropriate implementation in Messages in Google Chrome on Android prior to 137.0.7151.55 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-5066

reference_id

reference_type

scores

value	0.00102
scoring_system	epss
scoring_elements	0.28053
published_at	2026-04-16T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.27905
published_at	2026-04-24T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.27989
published_at	2026-04-21T12:55:00Z

value	0.00102
scoring_system	epss
scoring_elements	0.28036
published_at	2026-04-18T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31726
published_at	2026-04-02T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31676
published_at	2026-04-11T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31634
published_at	2026-04-12T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31598
published_at	2026-04-13T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31672
published_at	2026-04-09T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31771
published_at	2026-04-04T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.3159
published_at	2026-04-07T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31642
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-5066

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5066
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-5066

reference_url

https://issues.chromium.org/issues/356658477

reference_id

356658477

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:31:45Z/

url

https://issues.chromium.org/issues/356658477

reference_url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

reference_id

stable-channel-update-for-desktop_27.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-28T13:31:45Z/

url

https://chromereleases.googleblog.com/2025/05/stable-channel-update-for-desktop_27.html

fixed_packages

url	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
purl	pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@143.0.7499.169-1~deb12u1%3Fdistro=trixie

url	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
purl	pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@145.0.7632.159-1~deb13u1%3Fdistro=trixie

url pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

purl pkg:deb/debian/chromium@146.0.7680.153-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gbt-xkej-k7aw

vulnerability	VCID-2s6k-knqz-s7bv

vulnerability	VCID-32xu-tbuh-nfds

vulnerability	VCID-5znj-k78s-suca

vulnerability	VCID-6dub-gz8z-m3fk

vulnerability	VCID-7gex-zf7d-5ka4

vulnerability	VCID-88yy-dyf6-cue7

vulnerability	VCID-8uaq-e8kp-87fs

vulnerability	VCID-9p5u-1x3q-63dh

vulnerability	VCID-9s6e-p69b-suep

vulnerability	VCID-9sbp-bp4k-23cn

vulnerability	VCID-ehkc-zgaa-23fy

vulnerability	VCID-fene-srh1-b3gp

vulnerability	VCID-jr1y-txur-ebgr

vulnerability	VCID-n5d6-9gwm-vkc7

vulnerability	VCID-pg29-vrqh-pka8

vulnerability	VCID-pgw2-3qy2-5ban

vulnerability	VCID-pmwr-4j1v-s7gu

vulnerability	VCID-ptwz-uax5-mqbq

vulnerability	VCID-pvbx-j8j1-dkb3

vulnerability	VCID-q45n-pmfj-f7ae

vulnerability	VCID-r2b4-pdwz-ybae

vulnerability	VCID-v2gf-rqxb-57ae

vulnerability	VCID-vscd-6s2t-bucr

vulnerability	VCID-xfz2-cwzt-tqhz

vulnerability	VCID-y17q-5gas-jke9

vulnerability	VCID-z8nt-w84w-tkew

vulnerability	VCID-zcq4-z2c5-2ffr

vulnerability	VCID-zrnp-ujpt-tbee

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.153-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
purl	pkg:deb/debian/chromium@146.0.7680.177-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@146.0.7680.177-1%3Fdistro=trixie

url pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

purl pkg:deb/debian/chromium@147.0.7727.55-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1sea-z3vg-wfc4

vulnerability	VCID-212t-kjka-pbe4

vulnerability	VCID-3c8j-6wcw-83ax

vulnerability	VCID-47az-428z-bkar

vulnerability	VCID-7x3z-8d6t-vfen

vulnerability	VCID-8j9g-6zs1-13am

vulnerability	VCID-97y1-b8j2-xfb5

vulnerability	VCID-9amk-6z38-qbb1

vulnerability	VCID-9h91-43nj-7qgy

vulnerability	VCID-dzf3-492x-budu

vulnerability	VCID-erxp-a8pr-zyff

vulnerability	VCID-fk6m-8k4f-hyhz

vulnerability	VCID-hyew-s4ya-43bv

vulnerability	VCID-jd9x-rsee-ekfk

vulnerability	VCID-jku3-pwsy-bufq

vulnerability	VCID-jqs4-fgj9-63g7

vulnerability	VCID-k82r-r6dh-qfem

vulnerability	VCID-mjv9-578z-3kej

vulnerability	VCID-mp8f-94vu-jyf9

vulnerability	VCID-my86-8n81-y3hd

vulnerability	VCID-ndkj-5v64-cfa9

vulnerability	VCID-p4dd-y4mm-fqam

vulnerability	VCID-q17c-ud54-5ydd

vulnerability	VCID-qrwz-k5dg-27b2

vulnerability	VCID-thk2-w3k4-jfep

vulnerability	VCID-uded-9de1-xkdj

vulnerability	VCID-usvm-2xea-ffd6

vulnerability	VCID-uyu5-b3md-37cm

vulnerability	VCID-x1xm-1qpa-u7c1

vulnerability	VCID-x688-21pv-7yf8

vulnerability	VCID-ywwf-hc75-nbdm

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.55-1%3Fdistro=trixie

url	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
purl	pkg:deb/debian/chromium@147.0.7727.101-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@147.0.7727.101-1%3Fdistro=trixie

aliases CVE-2025-5066

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vej8-dj8m-a3cu

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/chromium@137.0.7151.55-3~deb12u1%3Fdistro=trixie

Package Instance