Google announced on Thanksgiving Day that an emergency Chrome update addresses an actively exploited zero-day vulnerability in the popular browser.
The high-severity flaw, identified as CVE-2022-4135, is described as a heap buffer overflow in Chrome’s GPU. The internet giant states, “Google is aware that an exploit for CVE-2022-4135 exists in the wild.” The security flaw could enable “a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page,” according to a National Vulnerability Database advisory.
Also Read: Reasons why Cybersecurity Mesh Architecture Has Become a Necessity for Modern Enterprises
Heap-based buffer overflow vulnerabilities frequently result in crashes, but they can also be used to place a program in an endless loop, resulting in denial-of-service (DoS) situations.
Read More: Google Patches Eighth Chrome Zero-Day of 2022
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.