Chrome Security Updates – September 2025

Google Chrome security updates for September 2025 are listed on this page. You can read about the publicly disclosed security vulnerabilities for the Chrome browser here under.

As of 30 September 2025, the latest version of the Chrome browser is 141.0.7390.54/55. The last security update for Chrome browser for September was released on 30 September for Stable Desktop Channel Windows operating system. It addresses 21 security vulnerabilities.

Salient points

• Chrome’s latest build got upgrade to build 141 on 30 September 2025. The latest Chrome version 141.0.7390.54/55 fixes 21 security vulnerabilities.
• Chrome browser is now on build 140 released in September. In August, Chrome worked on the 139 build.
• The fourth security update (Chrome 140.0.7339.207/.208) for Chrome in September 2025 addresses 3 security vulnerabilities.
• The third security update for Chrome in September 2025 addresses 4 security vulnerabilities. The latest Chrome version is 140.0.7339.185/.186. It address 4 user reported security vulnerabilities with HIGH severity levels. Details of security vulnerabilities are shared below.
• The second security update for Chrome in September 2025 addresses 2 vulnerabilities. It pushes the Chrome version for stable channel Windows desktop to 140.0.7339.128/129. Details of the 2 vulnerabilities fixed are shared below.
• The first in the series of security updates for Chrome browser for September 2025 was released on 2 September 2025.
• Chrome 140.0.7339.80/81 addresses 6 security vulnerabilities. 4 of these security vulnerabilities are publicly disclosed. Details of publicly shared security vulnerabilities are shared below.

Chrome 141.0.7390.54/55 – Security vulnerabilities

For Windows desktop stable channel, the Chrome security update for 30 September resolves the following security vulnerabilities that were disclosed by external security researchers:

• CVE-2025-11205: Heap buffer overflow in WebGPU. HIGH severity.
• CVE-2025-11206: Heap buffer overflow in Video. HIGH severity.
• CVE-2025-11207: Side-channel information leakage in Storage. MEDIUM severity.
• CVE-2025-11208: Inappropriate implementation in Media. MEDIUM severity.
• CVE-2025-11209: Inappropriate implementation in Omnibox. MEDIUM severity.
• CVE-2025-11210: Side-channel information leakage in Tab. MEDIUM severity.
• CVE-2025-11211: Out of bounds read in Media. MEDIUM severity.
• CVE-2025-11212: Inappropriate implementation in Media. MEDIUM severity.
• CVE-2025-11213: Inappropriate implementation in Omnibox. MEDIUM severity.
• CVE-2025-11215: Off by one error in V8. MEDIUM severity.
• CVE-2025-11216: Inappropriate implementation in Storage. LOW severity.
• CVE-2025-11219: Use after free in V8. LOW severity.

Chrome 140.0.7339.207/.208 – Security vulnerabilities

For Windows desktop stable channel, the Chrome security update resolves the following vulnerabilities:

• CVE-2025-10890: Side-channel information leakage in V8 – HIGH severity
• CVE-2025-10891: Integer overflow in V8 – HIGH severity
• CVE-2025-10892: Integer overflow in V8 – HIGH severity

Chrome 140.0.7339.185/.186 – Security vulnerabilities

For the Windows desktop stable channel, the Chrome security update with Chrome version 140.0.7339.185/.186 resolves the following HIGH severity security vulnerabilities:

• CVE-2025-10585 – Type Confusion in V8 – HIGH
• CVE-2025-10500: Use after free in Dawn – HIGH
• CVE-2025-10501: Use after free in WebRTC – HIGH
• CVE-2025-10502: Heap buffer overflow in ANGLE – HIGH

Chrome 140.0.7339.128/129 – Security vulnerabilities

Chrome 140.0.7339.128/129 was released on 9 September to resolve 2 security vulnerabilities disclosed publicly. The 2 vulnerabilities resolved include:

• CVE-2025-10200 – Critical Severity – Use after free in Serviceworker
• CVE-2025-10201 – High – Inappropriate implementation in Mojo

Both vulnerabilities require immediate action to patch the systems.

Chrome 140.0.7339.80/81 – Security vulnerabilities

Chrome 140.0.7339.80/81 was released on 2 September 2025. It is the first security update for the Chrome browser for the month of September. It implements security fixes in the underlying Chromium browser engine.

The current build resolves 6 security vulnerabilities. 4 of these vulnerabilities are publilcy shared by the Chromium team.

The 4 security vulnerabilities reported fixed by the Chrome developers are:

• CVE-2025-9864 – HIGH severity – Use after free in V8
• CVE-2025-9865 – MEDIUM seveirty – Inappropriate implementation in Toolbar
• CVE-2025-9866 – MEDIUM – Inappropriate implementation in Extensions.
• CVE-2025-9867 – MEDIUM – Inappropriate implementation in Downloads

Tp upgrade Chrome browser to the latest version, you could restart the browser and allow it to fetch the latest release from the servers.

To check the version of Chrome on your Windows computer, you can use the chrome://version command in the address bar of the Chrome browser.

Alternatively, you can open the Chrome browser and get the version of browser from the ‘About’ option. This will list the version of Chrome browser installed on your Windows desktop.