this Google Thursday (27) announced its launch emergency update for chrome to fix a zero day vulnerability newly discovered. The error, classified as high severity, affects the browser’s JavaScript engine.
No further details were disclosed for security reasons, as the flaw in question, identified by Avast researchers on Tuesday, 25th, could be used by cybercriminals in cyberattacks. information, most users update your browser to the latest version.
as he emphasized BleeComputer, “type confusion” vulnerabilities, as this bug was reported by the Mountain View company, it can allow access to memory regions outside the bounds of an application if exploited. From here, the attacker can access sensitive information from other programs and execute arbitrary code as well as more malicious actions.
Faced with risks, the search giant recommends: Update to Google Chrome version 107.0.5304.87 or 107.0.5304.88, depending on the platform used. This can be done by turning on the “About Google Chrome” option in the browser settings, simply waiting for the build to download and install – then restart the browser to complete the process.
Chrome Security Updates in 2022
Since the beginning of this year Chrome’s seventh security update to fix zero-day crashes. It is unknown whether the vulnerability exists, as Google did not detail the error. CVE-2022-3723 currently being exploited in some malicious campaigns.
In previous cases, some bugs were exploited by attackers, as in CVE-2022-0609. Cybercriminals affiliated with the North Korean government exploited the bug for several weeks until big tech discovered it and fixed it via update.
Source: Tec Mundo
