In response to the first zero-day vulnerability exploited in attacks since the start of the year, Google has released an emergency Chrome security update.
In a security advisory, Google said, "Google is aware that an exploit for CVE-2023-2033 exists in the wild."
The new version is currently being rolled out to users in the Stable Desktop channel, and it will eventually reach the full user base.
ALSO READ: Twitter increases character limit for 'Blue' users to 10,000
Chrome users will need to update to the new version as soon as possible since it fixes the CVE-2023-2033 vulnerability on Windows, Mac, and Linux computers.
Users can check for updates by doing the following steps:
- Go to the Chrome menu
- Now go to Help
- Now go to Google Chrome
As per the BleepingComputer, the high-severity zero-day vulnerability (CVE-2023-2033) is due to a high-severity type confusion weakness in the Chrome V8 JavaScript engine.
ALSO READ: Meta's cost-cutting measures prompt employee dissatisfaction and concerns about job security
Clement Lecigne of Google's Threat Analysis Group (TAG), whose major mission is to protect Google customers from state-sponsored attacks, reported the bug.
Moreover, the report mentioned that despite of Google claiming that its knowledge of CVE-2023-2033 zero-day exploits has been used in attacks, the company will provide further details.
"Access to bug details and links may be kept restricted until a majority of users are updated with a fix," Google was quoted as saying.
ALSO READ: WhatsApp now allowing to add descriptions to forwarded messages: Know more
"We will also retain restrictions if the bug exists in a third-party library that other projects similarly depend on, but haven't yet fixed," it added.
Inputs from IANS
