January 06, 2022

Google has released Chrome version 97.0.4692.71, patching 37 vulnerabilities, including 1 Critical ‘use-after-free’ vulnerability, exploitation of which leads to remote code execution (RCE).

The RCE Vulnerability

• CVE-2022-0096, Critical use-after-free in the Storage component. The vulnerability can be exploited remotely, which could have devastating effects ranging from corruption of valid data to the execution of malicious code on a compromised machine.

Affected Products

These vulnerabilities affect all Chrome and Chromium based browsers.

Mitigation

CYREBRO urges all clients to update their browser to the latest Chrome version, 97.0.4692.71 for Windows, Mac and Linux.

For the full patched vulnerabilities list, visit Chrome Releases.

References: Chrome Releases.