Wednesday, April 30, 2025
HomeChromeChrome 131 Released with the Fix for Multiple Vulnerabilities

Chrome 131 Released with the Fix for Multiple Vulnerabilities

Published on

SIEM as a Service

Follow Us on Google News

The Chrome team has officially announced the release of Chrome 131 for Windows, Mac, and Linux. The new version, Chrome 131.0.6778.69 for Linux and 131.0.6778.69/.70 for Windows and Mac is set to roll out to users over the coming days and weeks.

This update includes several security fixes, performance improvements, and other enhancements, making Chrome even more secure and efficient for its global user base.

As with every version update, Chrome 131 comes with several under-the-hood improvements.

- Advertisement - Google News

While the full list of changes can be found in the official Chrome log, users can also look forward to upcoming blog posts from Chrome and Chromium that will outline new features and significant efforts delivered in this version.

Free Ultimate Continuous Security Monitoring Guide - Download Here (PDF)

Security Fixes and Rewards

Security remains a top priority for Google, and Chrome 131 addresses multiple vulnerabilities to ensure safer browsing for users.

In total, 12 security issues have been fixed in this release, many of which were identified by external researchers.

Google will restrict access to the detailed bug reports until a majority of users have updated to the latest version to prevent potential exploitation.

If the vulnerabilities affect third-party libraries that other projects rely on, access to details may remain restricted.

Below is a detailed list of the security vulnerabilities addressed in Chrome 131, including the relevant CVE (Common Vulnerabilities and Exposures) identifiers, descriptions, severity levels, and who reported them.

CVE IDSeverityVulnerability DescriptionDate Reported
CVE-2024-11110HighInappropriate implementation in Blink2024-10-14
CVE-2024-11111MediumInappropriate implementation in Autofill2024-08-18
CVE-2024-11112MediumUse after free in Media2024-07-23
CVE-2024-11113MediumUse after free in Accessibility2024-08-16
CVE-2024-11114MediumInappropriate implementation in Views2024-10-02
CVE-2024-11115MediumInsufficient policy enforcement in Navigation2024-10-07
CVE-2024-11116MediumInappropriate implementation in Paint2023-11-14
CVE-2024-11117LowInappropriate implementation in FileSystem2023-01-06

In addition to the fixes contributed by external researchers, Google’s ongoing internal security efforts have played a crucial role in addressing various issues.

Through internal audits, fuzzing, and other initiatives, several vulnerabilities were identified and fixed before they could affect users.

Run private, Real-time Malware Analysis in both Windows & Linux VMs. Get a 14-day free trial with ANY.RUN!

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

WhatsApp Unveils New AI Features While Ensuring Full Message Secrecy

WhatsApp, the world’s most popular messaging platform, has announced a major expansion of artificial...

Wormable AirPlay Zero-Click RCE Flaw Allows Remote Device Hijack via Wi-Fi

A major set of vulnerabilities-collectively named “AirBorne”-in Apple’s AirPlay protocol and SDK have been...

Chrome 136 Fixes 20-Year-Old Privacy Bug in Latest Update

Google has begun rolling out Chrome 136 to the stable channel for Windows, Mac,...

Researchers Uncover SuperShell Payloads and Various Tools in Hacker’s Open Directories

Cybersecurity researchers at Hunt have uncovered a server hosting advanced malicious tools, including SuperShell...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

WhatsApp Unveils New AI Features While Ensuring Full Message Secrecy

WhatsApp, the world’s most popular messaging platform, has announced a major expansion of artificial...

Wormable AirPlay Zero-Click RCE Flaw Allows Remote Device Hijack via Wi-Fi

A major set of vulnerabilities-collectively named “AirBorne”-in Apple’s AirPlay protocol and SDK have been...

Chrome 136 Fixes 20-Year-Old Privacy Bug in Latest Update

Google has begun rolling out Chrome 136 to the stable channel for Windows, Mac,...