<ul><li>Google released emergency security updates to fix a Chrome vulnerability (CVE-2025-4664) that could lead to full account takeover.</li><li>The vulnerability, discovered by security researcher Vsevolod Kokorin, allowed for the leaking of cross-origin data via a crafted HTML page.</li><li>Google warned of a public exploit for the high-severity flaw, and patched it in Chrome's Stable Desktop channel with updates in versions 136.0.7103.113 and 136.0.7103.114.</li><li>In March 2025, Google addressed another high-severity vulnerability (CVE-2025-2783) actively exploited in attacks targeting organizations in Russia, related to Mojo on Windows.</li></ul>

Google fixed a Chrome vulnerability that could lead to full account takeover

Discover more