The Download
Google announced the fix to the latest zero-day in Google Chrome (CVE-2024-4947), a type confusion bug in the Javascript and WebAssembly engine. Type confusion attacks can be used for remote code execution.
What You Can Do
This is the seventh zero-day vulnerability announced by Google since the beginning of the year. Google Chrome presents a significant attack surface inside of networks. As such, it is important to continuously monitor this attack surface and update as patches become available. Google recommends upgrading to Chrome version 125.0.6422.60/.61 for Windows and macOS.
To Learn More:
Comments