CVE-2025-2783 — Google Chromium Mojo Sandbox Escape Vulnerability

Description

Google Chromium Mojo on Windows contains a sandbox escape vulnerability caused by a logic error, which results from an incorrect handle being provided in unspecified circumstances. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

How to fix CVE-2025-2783

No package mapping is available — consult the references below for vendor-specific guidance.

Is CVE-2025-2783 being exploited?

Yes — CVE-2025-2783 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

Affected packages (0)

No package mapping in OSV.