In a new blog post, Google has revealed a critical security risk with Chrome further warning the users to update their web browser to the latest version.
Contents
A Critical Loophole In Chrome
This security gap has been marked as critical since it was found to be under active exploitation by hackers before Google could roll out the fix.
The search engine firm has acknowledged the vulnerability in a new blog post that brings the Chrome update to mitigate it.
The said security lapse which is termed as CVE-2021-37973 is so far affecting Chrome users on Linux, macOS as well as Windows, according to the blog.
How To Get Protected Against This Flaw?
Now, Google is rolling out the Chrome 94.0.4606.61 stable channel to Windows, Mac and Linux as a protection against the exploitation of this risk.
And the security risk has been marked as a zero-day vulnerability.
In simple words, with this vulnerability, it was under active attack by hackers before Google could find and fix it through the update.
The same was confirmed by Google in its blog, further adding that “an exploit for CVE-2021-37973 exists in the wild”.
Is It Dangerous?
Basically, these kinds of security risks are more dangerous than regular security loopholes as the hackers have a head start over the security researchers.
There is a possibility that they may have already exploited it on a large scale.
So far, Google has not revealed any more details on the security flaw.
The reason seems to be that the threat actors who are unaware of its existence may not exploit it any further.
Soon, more details are expected once Google feels that more of its Chrome user base has upgraded to the latest version and the flaw cannot affect users any further.
Check For Your Device
To resolve this, Google suggests that all Chrome users should apply the new security fix to the vulnerability by updating their Chrome browsers.
For doing so, users can simply navigate to Settings > Help > About Google Chrome to check their present version of Chrome.
If it matches with the Chrome version 94.0.4606.61 or higher, then security fix is in place and working.
If you find anything below that means the browser is yet to be updated to apply the fix.
Comments are closed, but trackbacks and pingbacks are open.