AIKIDO-2025-10677
robotframework-browser is vulnerable to Access of Resource Using Incompatible Type
50
Medium Risk
This Affects:
robotframework-browserTL;DR
Chromium ships with robotframework-browser and is thus a crucial part of its security posture. As robotframework-browser processes untrusted content and code, any issue in Chromium could potentially be exploited. Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High).
Who does this affect?
You're affected if you are using a version which is within vulnerability ranges.
Background info
robotframework-browser is vulnerable to Access of Resource Using Incompatible Type in versions 0.1.0 - 19.7.2.
How to fix this
Upgrade robotframework-browser to the patch version.
Links
Other
chromereleases.googleblog.com/2025/09/stable-channel-update-for-desktop_17.htmlissues.chromium.org/issues/445380761cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-10585
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant