Security News > 2022 > August > New Google Chrome Zero-Day Vulnerability Being Exploited in the Wild
Google on Tuesday rolled out patches for Chrome browser for desktops to contain an actively exploited high-severity zero-day flaw in the wild.
Security researchers Ashley Shen and Christian Resell of Google Threat Analysis Group have been credited with reporting the flaw on July 19, 2022.
"Google is aware that an exploit for CVE-2022-2856 exists in the wild," it acknowledged in a terse statement.
Also fixed is a heap buffer overflow vulnerability in Downloads.
The development marks the fifth zero-day vulnerability in Chrome that Google has resolved since the start of the year -.
Users are recommended to update to version 104.0.5112.101 for macOS and Linux and 104.0.5112.102/101 for Windows to mitigate potential threats.
News URL
https://thehackernews.com/2022/08/new-google-chrome-zero-day.html
Related news
- New details reveal how hackers hijacked 35 Google Chrome extensions (source)
- Google Chrome is making it easier to share specific parts of long PDFs (source)
- Fake Google Chrome Sites Distribute ValleyRAT Malware via DLL Hijacking (source)
- Google Chrome's AI-powered security feature rolls out to everyone (source)
- Zero-Day Vulnerability in Ivanti VPN (source)
- Google OAuth Vulnerability Exposes Millions via Failed Startup Domains (source)
- Apple zero-day vulnerability exploited to target iPhone users (CVE-2025-24085) (source)
- Google to kill Chrome Sync on older Chrome browser versions (source)
- Google fixes Android kernel zero-day exploited in attacks (source)
- Russian cybercrooks exploiting 7-Zip zero-day vulnerability (CVE-2025-0411) (source)