{"document":{"category":"csaf_vex","csaf_version":"2.1","notes":[{"category":"summary","text":"Palo Alto Networks PSIRT provided VEX document. This document is autogenerated.","title":"Chromium: Monthly Vulnerability Update (October 2025)"}],"publisher":{"category":"vendor","name":"Palo Alto Networks","namespace":"https://security.paloaltonetworks.com"},"title":"Palo Alto Networks PSIRT provided VEX document: PAN-SA-2025-0016","distribution":{"text":"Copyright © 2024 Palo Alto Networks. All rights reserved.","tlp":{"label":"CLEAR","url":"https://www.first.org/tlp/"}},"tracking":{"current_release_date":"2026-03-11T22:24:09.788Z","generator":{"date":"2026-03-11T22:24:09.788Z","engine":{"name":"Vulnogram","version":"0.1.0-dev"}},"id":"PAN-SA-2025-0016","initial_release_date":"2025-10-08T16:00:00.000Z","revision_history":[{"number":"1","date":"2025-10-08T09:00:00.000Z","summary":"Initial publication"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"name":"Palo Alto Networks","category":"vendor","branches":[{"name":"Prisma Browser ","category":"product_name","branches":[{"category":"product_version_range","name":"vers:generic/Prisma Browser <139.18.2.139","product":{"name":"Palo Alto Networks Prisma Browser ","product_id":"PANW-Prisma-Browser--1"}},{"category":"product_version_range","name":"vers:generic/Prisma Browser >=141.6.4.55","product":{"name":"Palo Alto Networks Prisma Browser ","product_id":"PANW-Prisma-Browser--3"}}]}]}]},"vulnerabilities":[{"cve":"CVE-2025-9132","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Out of bounds write in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-9132","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9132"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Out of bounds write in V8"}]},{"cve":"CVE-2025-9478","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in ANGLE"}],"references":[{"category":"external","summary":"NVD - CVE-2025-9478","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9478"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in ANGLE"}]},{"cve":"CVE-2025-9864","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-9864","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9864"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in V8"}]},{"cve":"CVE-2025-9865","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Inappropriate implementation in Toolbar"}],"references":[{"category":"external","summary":"NVD - CVE-2025-9865","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9865"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Inappropriate implementation in Toolbar"}]},{"cve":"CVE-2025-9866","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Inappropriate implementation in Extensions"}],"references":[{"category":"external","summary":"NVD - CVE-2025-9866","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9866"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Inappropriate implementation in Extensions"}]},{"cve":"CVE-2025-9867","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Inappropriate implementation in Downloads"}],"references":[{"category":"external","summary":"NVD - CVE-2025-9867","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-9867"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Inappropriate implementation in Downloads"}]},{"cve":"CVE-2025-10200","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in Serviceworker"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10200","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10200"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in Serviceworker"}]},{"cve":"CVE-2025-10201","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Inappropriate implementation in Mojo"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10201","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10201"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Inappropriate implementation in Mojo"}]},{"cve":"CVE-2025-10500","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in Dawn"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10500","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10500"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in Dawn"}]},{"cve":"CVE-2025-10500","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in Dawn"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10500","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10500"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in Dawn"}]},{"cve":"CVE-2025-10501","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in WebRTC"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10501","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10501"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in WebRTC"}]},{"cve":"CVE-2025-10501","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Use after free in WebRTC"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10501","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10501"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Use after free in WebRTC"}]},{"cve":"CVE-2025-10502","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Heap buffer overflow in ANGLE"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10502","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10502"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Heap buffer overflow in ANGLE"}]},{"cve":"CVE-2025-10502","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Heap buffer overflow in ANGLE"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10502","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10502"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Heap buffer overflow in ANGLE"}]},{"cve":"CVE-2025-10585","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Type confusion in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10585","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10585"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Type confusion in V8"}]},{"cve":"CVE-2025-10585","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Type confusion in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10585","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10585"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Type confusion in V8"}]},{"cve":"CVE-2025-10890","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Side-channel information leakage in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10890","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10890"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Side-channel information leakage in V8"}]},{"cve":"CVE-2025-10890","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Side-channel information leakage in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10890","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10890"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Side-channel information leakage in V8"}]},{"cve":"CVE-2025-10891","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Integer overflow in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10891","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10891"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Integer overflow in V8"}]},{"cve":"CVE-2025-10891","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Integer overflow in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10891","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10891"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Integer overflow in V8"}]},{"cve":"CVE-2025-10892","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Integer overflow in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10892","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10892"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Integer overflow in V8"}]},{"cve":"CVE-2025-10892","product_status":{"fixed":["PANW-Prisma-Browser--3"],"known_affected":["PANW-Prisma-Browser--1"]},"notes":[{"category":"description","text":"Integer overflow in V8"}],"references":[{"category":"external","summary":"NVD - CVE-2025-10892","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-10892"},{"category":"self","summary":"Palo Alto Networks Security Advisory PAN-SA-2025-0016","url":"https://security.paloaltonetworks.com/PAN-SA-2025-0016"}],"threats":[{"category":"impact","description":"Integer overflow in V8"}]}]}