CVE-2025-5064 | Google Chrome up to 136.0.7103.113 Background Fetch API cross-domain policy

Inserito da Angelo Barbosa | Mag 27, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Google Chrome. Affected by this issue is some unknown functionality of the component Background Fetch API. The manipulation leads to permissive cross-domain policy with untrusted domains.

This vulnerability is handled as CVE-2025-5064. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-5064 | Google Chrome up to 136.0.7103.113 Background Fetch API cross-domain policy

Post correlati

CVE-2024-7747 | Wallet for WooCommerce Plugin up to 1.5.6 on WordPress Privilege Escalation

CVE-2024-41906 | Siemens SINEC Traffic Analyzer up to 1.x HTTP Response cache containing sensitive information (ssa-716317)

CVE-2024-2377 | Hitachi Energy SDM600 prior 1.3.4.572 HTTP Response Header origin validation

CVE-2025-1149 | GNU Binutils 2.43 ld libiberty/xmalloc.c xstrdup memory leak