Though particulars about its real-world impression are obscure, the Cybersecurity and Infrastructure Safety Company (CISA) added a Google Chrome flaw to its checklist of Identified Exploited Vulnerabilities Catalog.
Google has already launched a hard and fast model of Chrome browser for Home windows, Mac, and Linux customers. CISA has given authorities businesses till Dec. 26 to get a patch in place.
Tracked beneath CVE-2022-4262, CISA described the Google Chrome V8 Engine flaw as a “kind confusion vulnerability.” Attackers can exploit this type of vulnerability by utilizing a specifically crafted HTML web page to deprave the heap and crashing the browser. Attackers may exploit kind confusion flaws to execute arbitrary code. An exploit for CVE-2022-4262 already exists within the wild, in response to Google.
“Particular impacts from exploitation aren’t obtainable right now,” CISA added.