- Description
- Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
- Source
- chrome-cve-admin@google.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-451
- Hype score
- Not currently trending
⚠️ تحذير أمني 📌 الثغرة : ـCVE-2025-5063 ـCVE-2025-5280 ـCVE-2025-5064 ـCVE-2025-5065 ـCVE-2025-5066 ـCVE-2025-5281 ـCVE-2025-5283 ـCVE-2025-5067 👈 المنتج المستهدف : متصفح الإنترنت Google Chrome 🆘 مدى الخطو
@issam_khairi
31 May 2025
741 Impressions
3 Retweets
30 Likes
1 Bookmark
1 Reply
0 Quotes
CVE-2025-5065 Chromium UI Spoofing Vulnerability in FileSystemAccess API Prior to 137.0.7151.55 https://t.co/jX0s8Ufd0U
@VulmonFeeds
27 May 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-5065 Inappropriate implementation in FileSystemAccess API in Google Chrome prior to 137.0.7151.55 allowed a remote attacker to perform UI spoofing via a crafted HTML page. (… https://t.co/8CZcVZXDba
@CVEnew
27 May 2025
370 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C4C36BDE-BF33-4327-BF14-F57A7619FC6D",
"versionEndExcluding": "137.0.7151.55"
}
],
"operator": "OR"
}
]
}
]