Cyberdudebivash

  Executive Summary Google has patched CVE-2025-10585 , a zero-day type confusion vulnerability in the V8 JavaScript & WebAssembly engine of Google Chrome. This vulnerability is actively exploited in the wild and poses serious risk — memory corruption, arbitrary code execution, potentially full browser compromise. Users of Chrome (and Chromium-based browsers) should update immediately to avoid being targeted. Vulnerability Details Attribute Detail Name / ID CVE-2025-10585 Component Chrome’s V8 JavaScript / WebAssembly engine Help Net Security +2 The Hacker News +2 Type of Vulnerability Type Confusion — misinterpreting an object’s type leading to memory safety violation TechRadar +2 Help Net Security +2 Discovered by Google Threat Analysis Group (TAG) on September 16, 2025 Security Affairs +2 Bitdefender +2 Exploitation Status Already being exploited in the wild (zero-day) Help Net Security +2 TechRadar +2 Affected Versions Chrome versions prior to 140.0.7339.185/.186 (Wi...