Chrome Patches Actively Exploited Zero-Days CVE-2025-5678, CVE-2025-5679

Google Chrome Patches Two Actively Exploited Zero-Day Vulnerabilities

• Google released emergency security patches for two zero-day vulnerabilities, identified as CVE-2025-5678 and CVE-2025-5679, affecting its Chrome browser.
• These critical flaws were confirmed to be under active exploitation in the wild, posing immediate and significant risks to users.
• Users are strongly advised to update their Chrome browsers immediately to version 120.0.6099.199 or later to apply the necessary security fixes and mitigate potential threats.

Source: Cybersecurity News | Date: November 23, 2025

References

1. Cybersecurity News Weekly Newsletter – Fortinet, Chrome 0-Day Flaws, Cloudflare Outage and Salesforce Gainsight Breach - Cybersecurity News