Once again, as happens very often lately, Google has identified a new one bug of your browser Chrome.
According to researchers, this vulnerability has been actively exploited by some cybercriminali before the Mountain View giant, in recent days, proposed a corrective patch.
L’exploit zero-day in question, cataloged as CVE-2023-6345derives from a problem of overflow concerning Skiing, an open source 2D graphics library used by the browser. The experts did not want to release information regarding who and how used this context to carry out cyber attacks against users.
As already mentioned, this bug is certainly not an exception. In the last week, in fact, Google developers have identified and corrected well seven vulnerabilities are Chrome.
The latest exploit discovered, apparently, is present in versions prior to 119.0.6045.199 and, according to NVD, it can be classified as di high gravity. All this does nothing but attract the attention of cybercriminals who perceive Chrome as a browser capable of offering different attack angles.
Endless torment for Chrome: seven vulnerabilities fixed in the last week
However, it must be said that Chrome is not the only browser prey to zero-day vulnerabilities.
Similar cases are also common for the competition, with cases alternating Mozilla Firefox, Microsoft Edge e Safari Of Apple. All this taking into account that some exploits involving the Google browser actually affect all software created with the technology Chromiumand therefore also involve Opera, Brave, Vivaldi in addition to the aforementioned Edge.
On the other hand, cybercriminals’ interest in browsers is not surprising. As pointed out by Lionel Littychief security architect presso Menlo Securitythe increasingly massive use of these software makes them very attractive to cyber criminals.
The boom in web applications, which has made some classic software superfluous, has only increased the usage time of browsers. The integrated functions increasingly advanced, proposed by Google as well as other competitors, make these apps much more complex, interesting for users but at the same time with a huge amount of codewith greater possibility of presenting potential weak points.