Security News > 2023 > September > Chrome zero-day exploited in the wild, patch now! (CVE-2023-4863)
2023-09-12 09:36
Google has rolled out a security update for a critical Chrome zero-day vulnerability exploited in the wild.
Chrome generally applies the update automatically when users close and reopen the browser.
If the browser hasn't been closed in a while, users will see a colored icon indicating a pending update.
Mac users can also set up automatic browser updates.
Google has not yet revealed details about the attack, but urges users to update the browser as soon as possible.
Citizen Lab has recently detected two zero-day vulnerabilities affecting Apple devices.
News URL
https://www.helpnetsecurity.com/2023/09/12/cve-2023-4863/
Related news
- Zero-Day Alert: Google Releases Chrome Patch for Exploit Used in Russian Espionage Attacks (source)
- Microsoft March 2025 Patch Tuesday fixes 7 zero-days, 57 flaws (source)
- Choose your own Patch Tuesday adventure: Start with six zero day fixes, or six critical flaws (source)
- Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks (source)
- Patch Tuesday: Microsoft Fixes 57 Security Flaws – Including Active Zero-Days (source)
- New Windows zero-day leaks NTLM hashes, gets unofficial patch (source)
- Google fixes Chrome zero-day exploited in espionage campaign (source)
- Google fixes exploited Chrome sandbox bypass zero-day (CVE-2025-2783) (source)
- Mozilla Patches Critical Firefox Bug Similar to Chrome’s Recent Zero-Day Vulnerability (source)
- After Chrome patches zero-day used to target Russians, Firefox splats similar bug (source)