Date: November 30, 2023
We’re sharing news about a recent vulnerability with Google Chrome web browser, CVE-2023-6345.
Web browsers are client-side software that may encounter malicious content through a variety of direct and indirect means. A vulnerability in a browser could facilitate theft of cached credentials and possibly system compromise.
The vulnerability is within a software library named “Skia”, an open source 2D graphic library used within Chrome. The vulnerability affects all versions of Chrome prior to 119.0.6045.199.
Google reports active exploitation in the wild and has therefore pushed to patch all affected browsers. Typically this process is mostly transparent to the end user, simply restarting your Chrome browser will complete the update.
Please see the following resource for more information:
https://www.darkreading.com/vulnerabilities-threats/google-patches-another-chrome-zero-day-as-browser-attacks-mount
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article