CVE-2025-10585

CVE-2025-10585 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added September 23, 2025. EIP tracks 1 public exploit from researchers including AdityaBhatt3010.

AI-analyzed exploit summary This repository contains a detailed writeup about CVE-2025-10585, a type-confusion vulnerability in Chrome's V8 JavaScript engine, including its impact, exploit chain, and mitigation steps. No actual exploit code is provided.

Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)