Actively Exploited Zero-Day Vulnerability in Google Chrome
Dark Lab on Apr 17 2023
Share:
On 14 April 2023, Google released a security release for an actively exploited zero-day flaw in their Chrome web browser. The vulnerability is a type confusion flaw in the Chrome V8 JavaScript engine, which upon successful exploitation may result in arbitrary code execution. The type confusion vulnerability enables an attacker to potentially exploit heap corruption via a crafted HTML page.
The vendor advises organisations to upgrade Chrome to version 112.0.5615.121 to remediate the vulnerability.
https://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_14.html
The vendor advises organisations to upgrade Chrome to version 112.0.5615.121 to remediate the vulnerability.
https://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_14.html