Home > Cyber News > CVE-2022-1096 Chromium Vulnerability Exploited in the Wild
CYBER NEWS

CVE-2022-1096 Chromium Vulnerability Exploited in the Wild

by   |  Last Update:  |  0 Comments  

zero-day
If you haven’t updated your Chrome browser to version 99.0.4844.84, you should do it immediately. If you don’t, you are risking your security, as Google recently reported a new vulnerability in Chrome. The vulnerability in question has been described as “Chromium: CVE-2022-1096 Type Confusion in V8”.

Chromium: CVE-2022-1096 Type Confusion in V8

According to Microsoft’s advisory, the CVE-2022-1096 identifier was assigned by Chrome. It should be noted that Microsoft Edge is Chromium-based and ingests Chromium, which addresses this vulnerability. Also note that immediate patching is required, as Google is aware of an active exploit based on the flaw.




The technical details surrounding the issue are scarce and won’t be released to the public until a majority of users have updated their browsers. The browser maker will also retain restrictions, if the bug exists in a third-party library that other projects similarly depend on, but haven’t yet fixed.

It is noteworthy that V8 is Chrome’s JavaScript engine, which is also used server-side in Node.js. However, it has not yet said it is affected.

In February, Chrome was impacted by another zero-day, CVE-2022-0609. Upon disclosure, Google described it as a user after free in Animation bug, which has a high-severity score. The vulnerability was discovered by Clément Lecigne from Google’s Threat Analysis Group.

Another example of a use-after-free Chrome zero-day exploited in the wild is CVE-2021-37973. The bug resided in the Portals API, which is a web page navigation system that helps in page transitions, or what users see when they move between pages. This bug was also disclosed by Clément Lecigne.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. Chromium Virus Removal [Updated Guide] What is Chromium Virus? The Chromium virus is likely associated...
  2. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  3. CVE-2022-0609: Zero-Day Bug in Chrome Exploited in the Wild CVE-2022-0609 is a new zero-day vulnerability in Google Chrome which...
  4. Chromium Ads “Virus” – How To Remove It (Instructions for Mac) This article has been created in order to help explain...
  5. Which is the Most Secure Browser for 2020 – Chrome, Firefox, Edge, Safari? MARKET SHARE SECURITY RATING UPDATES FREQUENCY SECURITY PLUGINS SECURITY FEATURES...
  6. CVE-2022-1364 Chrome Vulnerability Exploited in the Wild Did you install the emergency patches for Google Chrome that...
  7. CVE-2020-15999: FreeType Zero-Day Bug in Chrome Exploited in the Wild Are you running the latest version of Google Chrome (currently...
  8. CVE-2022-2856 Critical Chrome Bug Exploited in the Wild An actively exploited, highly severe zero-day vulnerability has been fixed...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree