腾讯网

Chrome再曝光高危类型混淆0-Day漏洞(CVE-2025-10585)

Google Chrome浏览器的V8 JavaScript引擎曝出关键类型混淆0-Day漏洞(CVE-2025-10585),这是2025年发现的第六个已被活跃利用的Chrome零日漏洞。该高危漏洞CVSS 3.1评分为8.8分,攻击者可通过复杂的内存破坏技术实现远程代码执行,并绕过Chrome的沙箱保护机制。 V8类型混淆 ...
ZDNet

Bugs in Chrome's JavaScript engine can lead to powerful exploits. This project aims to stop ...

A new project hopes to beef up the security of V8, a part of the Chrome browser that most users aren't aware of but that hackers increasingly see as a juicy target. Chrome has over two billion users, ...
ZDNet

Securing Microsoft Edge: Switch off JIT compilers or sandbox?

Google and Microsoft, which now both contribute to the Chromium project, apparently share concerns about the Just-In-Time (JIT) compiler in Chrome's V8 JavaScript engine. Microsoft's Edge ...