CVE-2025-2783

KEV EPSS 46.86% · P98 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-2783

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Incorrect handle provided in unspecified circumstances in Mojo in Google Chrome on Windows prior to 134.0.6998.177 allowed a remote attacker to perform a sandbox escape via a malicious file. (Chromium security severity: High)

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Google Chrome 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Google Chrome是美国谷歌（Google）公司的一款Web浏览器。 Google Chrome 134.0.6998.177之前版本存在安全漏洞，该漏洞源于Mojo组件处理不当可能导致沙箱逃逸。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Google	Chrome	134.0.6998.177 ~ 134.0.6998.177	-

II. Public POCs for CVE-2025-2783

#	POC Description	Source Link	Shenlong Link
1	Simulated PoC for CVE-2025-2783 — a sandbox escape vulnerability in Chrome's Mojo IPC. Includes phishing delivery, memory fuzzing, IPC simulation, and logging. Safe for red team demos, detection engineering, and educational use.	https://github.com/Alchemist3dot14/CVE-2025-2783	POC Details
2	This project is a research-oriented and educational simulation designed to demonstrate the concept of a sandbox escape vulnerability within Google Chrome (version 134.0.6998.177), leveraging improper handle , validation via Mojo IPC.	https://github.com/byteReaper77/CVE-2025-2783	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-2783

请登录查看更多情报信息。

IV. Related Vulnerabilities

Same product: Chrome

Same vendor: Google

V. Comments for CVE-2025-2783

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-2783

I. Basic Information for CVE-2025-2783

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2025-2783

III. Intelligence Information for CVE-2025-2783

IV. Related Vulnerabilities

V. Comments for CVE-2025-2783

Leave a comment