Google Chrome has been updated to fix a vulnerability that allows attackers to leak sensitive information, including OAuth codes. The bug, tracked as CVE-2025-4664, is due to insufficient policy enforcement in the Google Chrome Loader and was discovered by security researcher Vsevolod Kokorin.
Kokorin explained how an attacker could use the flaw to capture full query parameters of a referring URL by setting an attacker-controlled referrer-policy. This allows attackers to plant malicious Link headers on legitimate websites, potentially leaking sensitive information such as email addresses or OAuth codes.
The vulnerability has a medium CVSS score of 4.3 and is considered high severity by Google. It was fixed in Chrome version 136.0.7103.113 and its inclusion in the Known Exploited Vulnerabilities catalog indicates that attackers have attempted to misuse it in the wild.
Federal Civilian Executive Branch agencies are required to resolve the flaw by June 5, 2025. Additionally, security updates were also released for DrayTek Vigor2960 and Vigor300B routers, tracking CVE-2024-12987 and SAP NetWeaver deserialization vulnerability, tracked as CVE-2025-42999.
This latest vulnerability update highlights the importance of keeping software up-to-date to prevent potential security breaches.
Source: https://www.scworld.com/news/google-chrome-bug-that-could-leak-sensitive-info-actively-exploited