Back to search
CVE-2025-8577
Published: Aug 7, 2025
Modified: Aug 7, 2025
PUBLISHED
Description
Inappropriate implementation in Picture In Picture in Google Chrome prior to 139.0.7258.66 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via a crafted HTML page. (Chromium security severity: Medium)
| Vendor | Product | Versions |
|---|---|---|
Chrome | affected 139.0.7258.66 - < 139.0.7258.66 |
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now