Chrome update immediately (zero-day)

Google has released a critical security update for the Chrome browser for zero-day CVE-2024-4671, a "use-after-free" vulnerability in the Visuals component of Chrome.chrome security

What is Chrome's Visuals component?

In short, it is the part responsible for rendering and displaying content in the browser. Everyone uses a browser to open content, so everyone is vulnerable.

Specifically, the vulnerability allows an attacker to exploit use-after-free memory access. This means that if you visit a malicious website, it can hack your computer. It doesn't matter if your machine is running Linux, macOS or Windows. This is a security hole that opens every system.

It was discovered by an anonymous researcher and reported directly to Google. CVE-2024-4671 has a Common Vulnerability Scoring System (CVSS) score of 8,8, which means it is a very serious vulnerability.

Scores above 9,0 are critical, also known as Fix It Right Now, but only an 8,8 score should worry us. An attacker can use this flaw to read data from your computer, cause errors, or even gain full access.

Google even reports that an exploit for CVE-2024-4671 is already in circulation.

 

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.096 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).