The most widely used web browser in the world is Google Chrome. It should therefore not be surprising that it is a favourite target for exploitation by cyber attackers.
ZDNet reported that Google has detected a new high severity vulnerability that is being exploited and they have released an update for Stable Chrome for Windows, Mac, and Linux users.
The patch for CVE-2022-4262, a high severity vulnerability, prevents a remote attacker from potentially exploiting a Type Confusion problem in Google V8’s Javascript engine by triggering heap corruption via a specially constructed HTML page.
The term “heap” refers to a section of pre-reserved memory that programmes utilise to store varying amounts of data. Heap corruption happens when a programme alters the view of the heap, which can lead to a memory fault that can be exploited by attackers.
A CVE-2022-4262 exploit is active in the wild, according to Google, which means that hostile attackers are actively using it to fuel their hacking activities. But, they are not releasing any information on how it happened, to prevent other attackers from taking advantage of it before users have updated to the latest Chrome version.
Users are advised to install the update that resolves the most recent vulnerability, which is 108.0.5359.94 for Mac and Linux and 108.0.5359.94/.95 for Windows.
Go to ⋮ on the upper right-hand corner and choose Help > About Google Chrome. It should start checking for an update. Just install the update and restart the browser to apply it.
