Another day, another zero-day for Google Chrome

2021-10-03T10:25:43
ID HIVEPRO:638B76A5A0E5958853BCE323FC342A7A
Type hivepro
Reporter Hive Pro
Modified 2021-10-03T10:25:43

Description

THREAT LEVEL: Amber.

For a detailed advisory, download the pdf file here.

Google has published an emergency fix (94.0.4606.71) to address the latest zero-day vulnerabilities (CVE 2021 37975, CVE 2021 37976). These are the fourth and fifth zero days of the month. These flaws have been exploited in the wild. This patch also addresses a code execution issue (CVE 2021 37974).

Vulnerability Details

Patch Link

<https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_30.html>

References

<https://www.bleepingcomputer.com/news/security/google-pushes-emergency-chrome-update-to-fix-two-zero-days/>