Palo Alto Networks Security Advisories
/
PAN-SA-2025-0013PAN-SA-2025-0013 Chromium: Monthly Vulnerability Update (July 2025)
Exploit MaturityATTACKED
Response EffortMODERATE
RecoveryUSER
Value DensityDIFFUSE
Attack VectorNETWORK
Attack ComplexityLOW
Attack RequirementsNONE
AutomatableNO
User InteractionACTIVE
Product ConfidentialityHIGH
Product IntegrityHIGH
Product AvailabilityHIGH
Privileges RequiredNONE
Subsequent ConfidentialityNONE
Subsequent IntegrityNONE
Subsequent AvailabilityNONE
Description
Palo Alto Networks incorporated the following Chromium security fixes into our products:
| CVE | Summary |
|---|---|
| CVE-2025-5958 | Use after free in Media |
| CVE-2025-5959 | Type Confusion in V8 |
| CVE-2025-6191 | Integer overflow in V8 |
| CVE-2025-6192 | Use after free in Metrics |
| CVE-2025-6554 | Type confusion in V8 |
| CVE-2025-6555 | Use after free in Animation |
| CVE-2025-6556 | Insufficient policy enforcement in Loader |
| CVE-2025-6557 | Insufficient data validation in DevTools |
Product Status
Required Configuration for Exposure
No special configuration is required to be affected by this issue.
Severity:HIGH, Suggested Urgency:MODERATE
CVSS-BT:8.6 /CVSS-B:8.6 (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/AU:N/R:U/V:D/RE:M/U:Amber)
Exploitation Status
Palo Alto Networks is not aware of any malicious exploitation of this issue.
Solution
| CVE | Prisma Access Browser |
|---|---|
| CVE-2025-5958 | 137.16.6.120 |
| CVE-2025-5959 | 137.16.6.120 |
| CVE-2025-6191 | 137.27.4.120 |
| CVE-2025-6192 | 137.27.4.120 |
| CVE-2025-6554 | 138.33.5.97 |
| CVE-2025-6555 | 138.33.5.97 |
| CVE-2025-6556 | 138.33.5.97 |
| CVE-2025-6557 | 138.33.5.97 |
Workarounds and Mitigations
No workaround or mitigation is available.
CPE Applicability
- cpe:2.3:a:palo_alto_networks:prisma_access_browser:*:*:*:*:*:*:*:* is vulnerable from (including)137.16.2 and up to (excluding)137.16.2.69
Timeline
Initial publication
