Vulnerability Database

309,136

Total vulnerabilities in the database

CVE-2025-1704

ComponentInstaller Modification in ComponentInstaller in Google ChromeOS 15823.23.0 on Chromebooks allows enrolled users with local access to unenroll devices and intercept device management requests via loading components from the unencrypted stateful partition.

Published: Apr 16, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-1704
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
google / chrome_os	15823.23.0	15823.23.0.x

https://issues.chromium.org/issues/b/359915523
https://issuetracker.google.com/issues/359915523

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo