CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Dec 10, 2025

CVE-2025-13223

High

EPSS 2.1%CISA KEV

Google/Chromium V8

Description

Google Chromium V8 contains a type confusion vulnerability that allows for heap corruption.

2.1%

Higher than 84.0% of all CVEs

https://chromereleases.googleblog.com/2025/11/stable-channel-update-for-desktop_17.html ; https://nvd.nist.gov/vuln/detail/CVE-2025-13223

ELEVATED

In CISA KEV

Published

Nov 19, 2025

Added to KEV

Nov 19, 2025

Remediation Due

Dec 10, 2025

Google

Chromium V8