Practice good security hygiene by turning on automatic updates. Be sure to install the latest Chrome browser update immediately to help mitigate any risk of falling victim to these exploits. Meanwhile, follow these security tips to help safeguard your data and devices: Luckily, Google has quickly acknowledged the vulnerabilities and is rolling out a patch for these bugs over the coming days. However, there have been no reports of it being exploited by cybercriminals for malicious purposes yet. Like the first bug, this flaw is also a use-after-free vulnerability. PDFium provides developers with capabilities to leverage an open-source software library for viewing and searching for PDF documents.
The second of the two vulnerabilities (CVE-2019-13721) affects PDFium, a platform developed by Foxit and Google. If this occurs, it can cause a variety of issues including program crashes, execution of malicious code, or even allowing an attacker to gain full remote access to the device.
So, what is the Google Chrome zero-day exploit? While there are few specific details known at this time, researchers did uncover that the bug is a use-after-free flaw, which is a memory corruption flaw that attempts to access a device’s memory after it has been freed. On October 31st, Google Chrome engineers issued an urgent announcement for the browser across platforms due to two zero-day security vulnerabilities, one of which is being actively exploited in the wild (CVE-2019-13720). While you might have been preoccupied with ghosts and goblins on Halloween night, a different kind of spook began haunting Google Chrome browsers.
0 kommentar(er)
