Multiple vulnerabilities have been discovered in Google Chrome, the most severe, CVE-2025-5419,of which could allow for arbitrary code execution.

Successful exploitation of the most severe of these vulnerabilities could allow for arbitrary code execution in the context of the logged-on user. Depending on the privileges associated with the user, threat actors could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than those who operate with administrative user rights.

Systems Affected

  • Chrome prior to 137.0.7151.68/.69 for Windows and Mac
  • Chrome prior to 137.0.7151.68 for Linux

What You Should Do

  • Navigate to Settings > About Chrome, and verify that your browser is updated to version 137.0.7151.68 or later.
  • BMT Managed Services Clients, this has been taken care of for you!

Questions or Concerns?  Reach out to BMT for assistance!