August 31, 2022

Google Patches 24 Chrome Vulnerabilities, 1 Critical RCE

Google has patched Critical Remote Code Execution vulnerability in Chrome.

The newly released Chrome version 105.0.5195.52/53/54  for Windows, and 105.0.5195.52 for Mac and Linux addresses 24 vulnerabilities overall.

The Critical Vulnerability

• CVE-2022-3038, Critical severity – Use after free Vulnerability in Network Service.

Successful exploitation of this vulnerability may lead to Remote Code Execution, and potentially – full system compromise.

Affected Products

• Chrome for Desktop prior to version 105.0.5195.52.
• Since the vulnerability affects all unpatched Chromium based browsers, new updates should be monitored in browsers such as Opera, Firefox, and Edge.

Mitigation

CYREBRO recommends updating browsers to the latest Chrome version, 105.0.5195.52 for Windows, Mac and Linux.

References: Google Chrome Advisory