Google confirms 13 new Chrome security vulnerabilities.
Photothek via Getty Images
Just because the Black Friday sales are now a thing of the past for another year, it doesn’t mean that Amazon customers can stop taking note of critical security alerts. Similarly, while Google Chrome update warning fatigue may well be setting in, what with seven zero-days confirmed so far in 2025, and the emergency browser updates continuing through November, it’s vital that you still pay attention, taking appropriate and speedy action. Case in point: Google has just confirmed no less than 13 security vulnerabilities and is rolling out a Chrome 143 security update to Windows, Mac, Linux and Android users. Do not wait for it to reach you automatically; you must kickstart the update process and ensure you activate the protections right now.
ForbesCISA Warns iPhone And Android Users — Secure Your Smartphone NowBy Davey WinderChrome 143 Has Arrived As Google Starts Rolling Out An Update With 13 Security Vulnerabilities Patched
“The Chrome team is delighted to announce the promotion of Chrome 143 to the stable channel for Windows, Mac and Linux,” Srinivas Sista from Google said, adding that the update will “roll out over the coming days/weeks.” Not long after, Google’s
Krishna Govind confirmed that Chrome 143 for Android will also “become available on Google Play over the next few days.” Which is nice. Actually, it’s more than nice it’s absolutely essential as the update actually fixes no less than 13, unlucky for Chrome users, security vulnerabilities, four of them with a Common Vulnerability Scoring System severity rating of high.
That’s the good news. These vulnerabilities have been discovered, responsibly disclosed, and the necessary patches applied to fix them. One even earned the researcher who caught the bug a bounty of $11,000.
The bad news is the fact that the fix is coming in days, or even weeks, according to Google. You cannot afford to wait that long if you take your security seriously. Sure, Google updates Chrome automatically, so you can just sit back if you want, but I would not advise it. Instead, I would take control and get that process moving right now, today. It’s easy enough to do by heading to the Help|About Google Chrome option in the Chrome menu. Just doing this will automatically check for and download any updates. But, and it’s a big but, you must relaunch your browser when prompted, or the protections will not be activated.
Kickstarting a Google Chrome security update.
Davey Winder
Rleaunch to activate or you are NOT protected.
Davey Winder
And relax. Until the next update arrives…
Davey WinderForbesUrgent New FBI Warning: 1 Simple Message Can Empty Your Bank AccountBy Davey WinderListed: The 13 New Google Chrome Security VulnerabilitiesA high-rated vulnerability, CVE-2025-13630, was found in the Chrome V8 JavaScript rendering engine.A high-rated vulnerability, CVE-2025-13631, impacting the Google Updater.A high-rated vulnerability, CVE-2025-13632, that affects the DevTools component.A high-rated vulnerability, CVE-2025-13633, this time with Digital Credentials.A medium-rated vulnerability, CVE-2025-13634, in the shape of an inappropriate implementation in Downloads.A medium-rated vulnerability, CVE-2025-13720, that impacted the Loader component of Chrome.A medium-rated vulnerability, CVE-2025-13721, also in the V8 engine.A low-rated vulnerability, CVE-2025-13635, in Downloads.A low-rated vulnerability, CVE-2025-13636, affects the Split View function.A low-rated vulnerability, CVE-2025-13637, yet again in Downloads.A low-rated vulnerability, CVE-2025-13638, a use-after-free vulnerability in Media Stream.A low-rated vulnerability, CVE-2025-13639, but it’s in the WebRTC component.A low-rated vulnerability, CVE-2025-13640, an inappropriate implementation in, worryingly, Passwords.
Don’t let 13 be unlucky for you; update and relaunch Google Chrome now.
ForbesHackers Bypass Signal, Telegram And WhatsApp Encryption To Read MessagesBy Davey Winder