Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Active Exploitation of a Zero-day Vulnerability in Chrome Web Browser
Alerts

Active Exploitation of a Zero-day Vulnerability in Chrome Web Browser

3 December 2022

Google has released a security update to address a zero-day vulnerability (CVE-2022-4262) in their Chrome Web Browser. The vulnerability is reportedly being actively exploited.

Successful exploitation of the vulnerability could allow attackers to crash the browser application and/or execute arbitrary code.

Chrome users are advised to upgrade their browser to version 108.0.5359.94 for macOS and Linux, and version 108.0.5359.94/.95 for Windows to mitigate potential threats. Users are also encouraged to enable automatic updates in Chrome to ensure that their software is updated promptly.

Users of Chromium-based browsers (e.g. Microsoft Edge, Brave, Opera, Vivaldi, etc.) are also advised to apply the fixes as and when they become available.

More information is available here:

https://chromereleases.googleblog.com/2022/12/stable-channel-update-for-desktop.html?m=1

https://www.bleepingcomputer.com/news/security/google-chrome-emergency-update-fixes-9th-zero-day-of-the-year/

Back to top