- Google released security updates for Chrome to fix four vulnerabilities, including one zero-day flaw.
- The zero-day, tracked as CVE-2025-10585, affects the V8 JavaScript and WebAssembly engine.
- The flaw can allow attackers to execute code or cause program crashes if exploited.
- Google’s Threat Analysis Group (TAG) discovered and reported the issue on September 16, 2025.
- Users are urged to update Chrome and other Chromium-based browsers to the newest versions to stay protected.
On September 18, 2025, Google issued a security update for its Chrome browser to fix four vulnerabilities, one of which has been exploited in real-world attacks. The most critical issue is tracked as CVE-2025-10585, a zero-day vulnerability impacting the browser’s V8 JavaScript and WebAssembly engine.
CVE-2025-10585 is a type confusion flaw, which can allow Hackers to force the program to behave in unexpected ways, such as running malicious code or causing the browser to crash. Google’s Threat Analysis Group (TAG) identified and reported the vulnerability earlier this week.
In an official advisory, Google confirmed that an exploit for this flaw exists and has been used in actual attacks. The company did not provide details about the nature of the attacks or who might be responsible, stating this is to prevent further exploitation before users can apply the fix. Users can read more in the notice published on the official Chrome Releases Blog.
This vulnerability marks the sixth zero-day issue either exploited or shown as a proof-of-concept in Chrome since the beginning of 2025. Previous zero-days this year include CVE-2025-2783, CVE-2025-4664, CVE-2025-5419, CVE-2025-6554, and CVE-2025-6558.
Google recommends that all users update their Chrome browser to versions 140.0.7339.185/.186 for Windows and macOS, and 140.0.7339.185 for Linux. Users can check for updates by navigating to More > Help > About Google Chrome and relaunching their browser.
Those using other browsers based on Chromium—such as Microsoft Edge, Brave, Opera, and Vivaldi—are advised to install the latest security patches as they become available.
✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.
Previous Articles:
- Powell: Gen Z Faces ‘Nightmare’ Job Market as AI Cuts Hiring
- Praetorian CEO Pleads Guilty in $200M Bitcoin Ponzi Scheme
- Ripple CEO: XRP ETFs ‘Inevitable,’ Eyes White House Crypto Stockpile
- Crypto Markets Flat as Fed Delivers Long-Anticipated Rate Cut
- Giant Golden Trump Bitcoin Statue Unveiled Near US Capitol
