Today: Dec 26, 2024

0-Day Alert: Replace Chrome Now to Repair New Actively Exploited Vulnerability

0-Day Alert: Replace Chrome Now to Repair New Actively Exploited Vulnerability
January 17, 2024



Jan 17, 2024 NewsroomBrowser Safety / Vulnerability0-Day Alert: Replace Chrome Now to Repair New Actively Exploited Vulnerability
Google on Tuesday launched updates to mend 4 safety vulnerabilities in its Chrome browser, together with a zero-day malicious program. The problem, coded as CVE-2024-0519, comes to an over-the-limit vulnerability within the V8 JavaScript engine and WebAssembly, which might include malicious equipment to reason crashes. “By means of studying out-of-bounds reminiscence, an attacker can achieve get entry to to secrets and techniques, equivalent to reminiscence addresses, which may also be countermeasures equivalent to ASLR to reinforce reliability and the facility to take advantage of different vulnerabilities to execute code as an alternative of denial of carrier,” in step with MITRE's Commonplace Weak spot Enumeration (CWE). Cybersecurity
Details about how the violence works and who threatens those that exploit it’s been withheld to stop exploitation. The problem was once reported anonymously on January 11, 2024. “Having access to a reminiscence restrict in V8 in Google Chrome prior to 120.0.6099.224 allowed a faraway attacker to take advantage of a stack vulnerability the use of a crafted HTML web page,” reads the flaw on NIST's Nationwide Vulnerability Database (NVD). This building is the primary day of exhausting paintings for use by way of Google in Chrome in 2024. Final 12 months, the tech large broke 8 days of exhausting paintings to 0 for the browser. Customers are inspired to improve to Chrome model 120.0.6099.224/225 for Home windows, 120.0.6099.234 for macOS, and 120.0.6099.224 for Linux to mitigate attainable threats. Customers of Chromium-based browsers equivalent to Microsoft Edge, Courageous, Opera, and Vivaldi also are steered to use the fixes once they change into to be had.

Did you to find this text fascinating? Observe us on Twitter  and LinkedIn to learn extra of our content material.

OpenAI
Author: OpenAI

Don't Miss

Microbiome find out about unearths micro organism in human intestine infrequently replace their CRISPR protection methods

Microbiome find out about unearths micro organism in human intestine infrequently replace their CRISPR protection methods

A find out about from MIT organic engineers has yielded new perception
Newest GTA On-line weekly replace briefly got rid of two cars: File

Newest GTA On-line weekly replace briefly got rid of two cars: File

Rockstar Video games launched a brand new weekly replace for GTA On-line