Google Releases Emergency Chrome Update To Fix Zero-Day Vulnerability
Chrome users are being urged to update to the latest version as soon as possible to protect themselves against CVE-2023-2033 vulnerability exploitation.
- Google released an emergency update for its Chrome browser to address the threat of a zero-day vulnerability.
- Malicious actors can exploit the vulnerability to run arbitrary code, which they can use to hijack affected devices.
Google Chrome recently faced its first zero-day vulnerability of 2023. In response, Google has released an emergency security update to fix the CVE-2023-2033 vulnerability. The fix was initially released on the Stable Desktop channel and will eventually be available to the entire user community.
Chrome users are urged to update their Chrome browsers as soon as possible to fix the issue on Mac, Windows, and Linux operating systems. Users can update their browsers by entering the Menu option, clicking Help, and choosing Google Chrome.
Maliciously programmed web pages can use the vulnerability to run arbitrary code in Chrome. Consequently, using the browser to visit such websites puts the device at risk of being hijacked. Based on the V8 Javascript engine, this high-severity bug is said to be present in desktop versions of Chrome before 112.0.5615.121, which was released on the 14th of April.
See More: Android Malware Infects Legitimate Google Play Apps, Millions Impacted
Google, Intel, and Others Form the Hacking Policy Council
Major tech industry entities, including Intel and Google, among others, announced the launch of a project to create a conducive legal framework for security researchers that will also help foot the bills for good-faith researchers that have become embroiled in lawsuits. The project will work on protections for security researchers, best practices, and vulnerability management and detection.
Google also plans to provide seed funding to establish the Security Research Legal Defense Fund to help represent individuals carrying out good-faith research to improve cybersecurity in the public interest.
Do you think Google acted quickly enough to protect its users? Let us know on LinkedIn, Twitter, or Facebook. We would love to hear from you!
Image source: Shutterstock