"We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel." "Google is aware of reports that an exploit for CVE-2021-21148 exists in the wild," the company said in a blog post. The discretion is typical of companies facing security risks that are still widely active, but Google did note that the bug was being used in attacks before it was reported to engineers by user Mattias Buelens on Jan.
The details about the vulnerability, called CVE-2021-21148, are currently being kept under wraps "until a majority of users are updated with a fix," according to a post on Google's security update blog on Thursday. 150 for Mac, Windows and Linux system users. As first reported by CNET sister publication ZDNet, the zero-day vulnerability and patch are for Chrome version. On Thursday, Google said it's now rolling out security updates for the browser to patch a vulnerability that's still being exploited in the wild. If you see a notification to update your Chrome this week, don't ignore it.
0 kommentar(er)
