Unrated severityNVD Advisory· Published Jul 7, 2025· Updated Jul 9, 2025

CVE-2025-6044

Description

An Improper Access Control vulnerability in the Stylus Tools component of Google ChromeOS version 16238.64.0 on the garaged stylus devices allows a physical attacker to bypass the lock screen and access user files by removing the stylus while the device is closed and using the screen capture feature.

Affected products

Google/Chromellm-fuzzy
Range: 16238.64.0
Google/ChromeOSv5
Range: 16238.64.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

issues.chromium.org/issues/b/421184743mitre
issuetracker.google.com/issues/421184743mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000