Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. Active Exploitation of Zero-Day Vulnerability in Google Chrome
Alerts

Active Exploitation of Zero-Day Vulnerability in Google Chrome

17 January 2024

Google has released security updates addressing a zero-day vulnerability (CVE-2024-0519) in their Chrome browser on Windows, Mac and Linux systems. The vulnerability is reportedly being actively exploited.

Successful exploitation of the out-of-bounds memory access vulnerability could allow a remote attacker to access sensitive data beyond the memory buffer with a crafted HTML page.

Users of Google Chrome are encouraged to update their browser to the latest version (120.0.6099.234 for Mac, 120.0.6099.224 for Linux and 120.0.6099.224/225 for Windows respectively) immediately.

Users are also advised to enable automatic software updates in their Chrome browser to ensure their software is updated promptly.

More information is available here:

https://chromereleases.googleblog.com/2024/01/stable-channel-update-for-desktop_16.html

https://www.bleepingcomputer.com/news/security/google-fixes-first-actively-exploited-chrome-zero-day-of-2024/amp/

Back to top