CVE Vulnerabilities

CVE-2025-5067

Authentication Bypass by Spoofing

Published: May 27, 2025 | Modified: May 29, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Inappropriate implementation in Tab Strip in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Low)

Weakness

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

Affected Software

Name Vendor Start Version End Version
Chrome Google * 137.0.7151.55 (excluding)
Chromium-browser Ubuntu upstream *

References