Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Active Exploitation of Zero-Day Vulnerability in Google Chrome
Alerts

Active Exploitation of Zero-Day Vulnerability in Google Chrome

15 April 2023

Google has released security updates to address a zero-day vulnerability (CVE-2023-2033) in their Chrome browser on Windows, Mac and Linux systems. The vulnerability is reportedly being actively exploited.

The vulnerability exists due to a type confusion weakness in the Chrome V8 JavaScript engine. Successful exploitation of the vulnerability could allow a remote attacker to crash the browser or execute arbitrary code.

Users of Chrome browsers on Windows, Mac and Linux systems are advised to upgrade their software to version 112.0.5615.121 as soon as possible.

Users are also encouraged to enable automatic updates in their Chrome browser to ensure that their software is updated promptly.

More information is available here:

https://chromereleases.googleblog.com/2023/04/stable-channel-update-for-desktop_14.html

https://nvd.nist.gov/vuln/detail/CVE-2023-2033

https://www.bleepingcomputer.com/news/security/google-chrome-emergency-update-fixes-first-zero-day-of-2023/

Back to top