Security Alert: Chrome zero-day Vulnerability
Date:
2022-02-15 18:16:00
Status:
Closed
Brief Description:
A zero-day vulnerability in Chrome for Windows, Mac and Linux may allow malicious actors, if successful, to execute arbitrary code on affected systems and could lead to corruption of valid data. Google states this vulnerability is being actively exploited
Current Status:
N/A
Services Affected:
Certified Desktop
Full Description:
A zero-day vulnerability in Chrome for Windows, Mac and Linux may allow an attacker to execute malicious code on systems running Chrome. Google states this vulnerability has been reportedly exploited in the wild. Additionally, they mentioned that access to the bug details and links will be kept restricted until most of the users have updated Chrome.
To check if your browser is updated, navigate to Settings > Help > About Google Chrome or chrome://settings/help. If your Chrome browser is listed as 98.0.4758.102 or higher, you are protected.
Users should apply the following updates:
• Chrome 98.0.4758.102 or higher
Managed computers enrolled with Certified Desktop will automatically check for and apply updates. Cornell IT is patching for this vulnerability this week or you can proactively update your browser. These patches are already available in Self Service.
For more information refer to the references below.
ThreatPost: https://www.bleepingcomputer.com/news/security/google-chrome-emergency-update-fixes-zero-day-exploited-in-attacks/
You can read more about this latest update below.
https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html
To check if your browser is updated, navigate to Settings > Help > About Google Chrome or chrome://settings/help. If your Chrome browser is listed as 98.0.4758.102 or higher, you are protected.
Users should apply the following updates:
• Chrome 98.0.4758.102 or higher
Managed computers enrolled with Certified Desktop will automatically check for and apply updates. Cornell IT is patching for this vulnerability this week or you can proactively update your browser. These patches are already available in Self Service.
For more information refer to the references below.
ThreatPost: https://www.bleepingcomputer.com/news/security/google-chrome-emergency-update-fixes-zero-day-exploited-in-attacks/
You can read more about this latest update below.
https://chromereleases.googleblog.com/2022/02/stable-channel-update-for-desktop_14.html
CIT TDX ID: