Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Active Exploitation of Zero-Day Vulnerability in Google Chrome
Alerts

Active Exploitation of Zero-Day Vulnerability in Google Chrome

21 December 2023

Google has released security updates to address a high-severity zero-day vulnerability (CVE-2023-7024) in Google Chrome. The vulnerability is reportedly being exploited.

Successful exploitation of the heap buffer overflow vulnerability could allow an attacker to execute arbitrary code on the affected system.

Users of Google Chrome are advised to upgrade their browser to the latest version (120.0.6099.129 for Mac and Linux, 120.0.6099.129/130 for Windows) immediately.

Users are also encouraged to enable automatic updates in their Chrome browser to ensure that their software is updated promptly.

More information is available here:
https://chromereleases.googleblog.com/2023/12/stable-channel-update-for-desktop_20.html
https://www.bleepingcomputer.com/news/security/google-fixes-8th-chrome-zero-day-exploited-in-attacks-this-year/
https://securityaffairs.com/156231/security/google-addressed-a-new-actively-exploited-chrome-zero-day.html

Back to top