Security Alert: Urgent Google Chrome/Microsoft Edge patch
Date:
2022-07-05 11:35:00
Status:
Closed
Brief Description:
A zero-day vulnerability in Google Chrome and Microsoft Edge for Windows, macOS, and Linux may allow malicious actors, if successful, to execute arbitrary code on affected systems. Google states this vulnerability is being actively exploited. Patch now.
Current Status:
Microsoft has added Microsoft Edge 103.0.1264.49 to the Microsoft Update Catalog and Windows Server Update Services. Microsoft Edge 103.0.1264.49 will now be deployed to Certified Desktop customers on Windows with a deadline installation of Thursday, 07 at 4:00 pm alongside Google Chrome. Certified Desktop customers on macOS that use Microsoft Edge should follow the directions in this alert to check for and install updates.
Services Affected:
Certified Desktop
Full Description:
A zero-day vulnerability in Google Chrome and Microsoft Edge for Windows, macOS, and Linux may allow malicious actors, if successful, to execute arbitrary code on affected systems. Google states this vulnerability is being actively exploited. Patch now.
For Google Chrome:
To check if your browser is updated, navigate to Settings > Help > About Google Chrome or chrome://settings/help in the address bar. If your Chrome browser is listed as 103.0.5060.114 or higher, you are protected.
Users should apply the following updates:
• Chrome 103.0.5060.114 or higher
For Microsoft Edge:
To check if your browser is updated, navigate to Menu > Help and Feedback > About Microsoft Edge, or edge://settings/help in the address bar. If your Edge browser is listed as 103.0.1264.49 or higher, you are protected.
Users should apply the following updates:
• Edge 103.0.1264.49 or higher
Certified Desktop customers:
• Windows: Google Chrome will be available this afternoon with an install deadline of 4:00pm on Thursday, July 7. Certified Desktop customers on Windows should have the Microsoft Edge patch available today, July 7 at 4:00pm
• macOS: Google Chrome will be available this afternoon with an install deadline of 4:00pm on Thursday, July 7.
Users who do not have a managed computer should check for updates and install them.
For more information refer to the references below.
Bleeping Computer: https://www.bleepingcomputer.com/news/security/google-patches-new-chrome-zero-day-flaw-exploited-in-attacks/
Chrome Releases: https://chromereleases.googleblog.com
Microsoft Edge: https://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security
For Google Chrome:
To check if your browser is updated, navigate to Settings > Help > About Google Chrome or chrome://settings/help in the address bar. If your Chrome browser is listed as 103.0.5060.114 or higher, you are protected.
Users should apply the following updates:
• Chrome 103.0.5060.114 or higher
For Microsoft Edge:
To check if your browser is updated, navigate to Menu > Help and Feedback > About Microsoft Edge, or edge://settings/help in the address bar. If your Edge browser is listed as 103.0.1264.49 or higher, you are protected.
Users should apply the following updates:
• Edge 103.0.1264.49 or higher
Certified Desktop customers:
• Windows: Google Chrome will be available this afternoon with an install deadline of 4:00pm on Thursday, July 7. Certified Desktop customers on Windows should have the Microsoft Edge patch available today, July 7 at 4:00pm
• macOS: Google Chrome will be available this afternoon with an install deadline of 4:00pm on Thursday, July 7.
Users who do not have a managed computer should check for updates and install them.
For more information refer to the references below.
Bleeping Computer: https://www.bleepingcomputer.com/news/security/google-patches-new-chrome-zero-day-flaw-exploited-in-attacks/
Chrome Releases: https://chromereleases.googleblog.com
Microsoft Edge: https://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security
CIT TDX ID: