"The goal is to force attackers to start from scratch each time we detect one of their exploits: they're forced to discover a whole new vulnerability, they have to invest the time in learning and analyzing a new attack surface, they must develop a brand new exploitation method. Out of this number, a couple of them were found to be attacking the Chrome browser.Īccording to Maddie Stone, a researcher from Google Project Zero or GPZ, early regression tests and patching could have prevented at least half of the zero-day exploits at the start of the year. As of June 15, the company could detect 18 zero-day exploits in the wild. This year has been a challenging task for the Google Security Team. Related Article: Google Chrome Users Beware: 8 'High' Threat Exploits Exposed | Here's How to Protect Yourself From These Hacks Google Has Encountered 18 Zero-Days So Far Once the update kicks in, it will now be automatically downloaded and installed.įor the changes to take effect, you need to restart your Google Chrome.įorbes also includes in its report that Google Chrome bearing the Android version number 1.71 is now up for downloads on the PlayStore.Īside from the update for both Android and Windows Chrome, it also fixes two other vulnerabilities, including the CVE-2022-2296 in the Chrome OS shell and the CVE-2022-2295 in the V8 JavaScript engine. They should quickly update their software soon.įor those who want to get started in the Chrome update, just go to the Help | About Option on your browser menu. The company also notes that Android users share the same fate.
Windows users are not the only ones who are affected by a potential Chrome hack. At the time, they warned the Windows users of Chrome should immediately update their browser to avoid this vulnerability. What is CVE-2022-2294 Vulnerability?Īs per the Avast Threat Intelligence team via Forbes, CVE-2022-2294 Vulnerability is classified as a high-severity threat displayed as a "heap buffer overflow" in RTC.
Since then, it launched a WebRTC fix intended for Chrome Android users. It operates in the Chrome browser, and many vendors widely use it.Īs of writing, Google says it's aware of the occurring exploit for CVE-2022-2294. Google is rolling out an update for the Chrome browser which fixes the WebRTC flaw on Windows and Android.Īccording to a recent report by ZDNet, Google has recently dropped an important update that will get rid of the WebRTC flaw in the Chrome app for Windows desktops.įor those who don't know, WebRTC is a JavaScript-powered standard for voice and video apps.
0 kommentar(er)
