Cybersecurity Google Chrome 103: Critical Security Warning For 3 Billion Windows, Mac & Linux Users Davey Winder Senior Contributor Opinions expressed by Forbes Contributors are their own. Co-founder, Straight Talking Cyber New! Follow this author to improve your content experience. Got it! Jun 23, 2022, 04:54am EDT | Share to Facebook Share to Twitter Share to Linkedin It is estimated that the Google Chrome web browser has a userbase in excess of three billion across platforms.
Desktop users, be they of the Linux, Mac or Windows persuasion, are advised to update their browser as soon as possible as nine new security vulnerabilities, including one rated critical, are confirmed by Google. Critical new Google Chrome web browser vulnerability confirmed In a June 21 posting to Google’s Chrome releases channel , a security update was confirmed that fixes a total of 14 issues. Nine of these are vulnerabilities that have been given Common Vulnerabilities and Exposures (CVE) ratings from low right up to critical.
Although, as far as I am aware, none of the security vulnerabilities listed have been exploited by attackers at this time, the threat window is still open and the attack clock ticking. As such, it’s important to take this warning to update seriously. But don’t just take my word for it, the Cybersecurity & Infrastructure Security Agency (CISA) has also advised users to apply the necessary update across operating system platforms as an attacker could exploit the vulnerabilities to take control of a targeted device.
MORE FROM FORBES U. S. Cybersecurity Agency ‘Strongly Urges’ You Patch These 75 Actively Exploited Flaws By Davey Winder MORE FOR YOU iOS 15: Apple Issues 22 Important iPhone Security Updates Widely-Used Hikvision Security Cameras Vulnerable To Remote Hijacking iOS 15 Is Available Now With These Stunning New iPhone Privacy Features Google awards $44,000 in bug bounty payments to Chrome security researchers Indeed, the nine listed vulnerabilities have been taken seriously enough by Google to earn the security researchers who uncovered them a total of $44,000 in bug bounty payments.
Update your Chrome browser now Davey Winder I recommend you kick-start this latest Chrome 103 security update, which Google says will “roll out in the coming days/weeks” as a matter of urgency. Don’t wait for the automatic update to arrive, which can sometimes be sitting there waiting for the required browser restart for days or weeks given individual browser use cases. Instead, go to the Help|About option in your Google Chrome menu to force an update check and automatically download and install it.
You will, of course, still need to restart your browser to ensure the update has been implemented and is protecting you from potential harm. MORE FROM FORBES Critical New Security Update For Millions Of Windows 10, 11 & Server Users By Davey Winder What are the security vulnerabilites fixed by the Chrome 103. 0.
5060. 53 update? So, what are the most important vulnerabilities to be fixed in this update to Chrome version 103. 0.
5060. 53? Top of the shop is the critical-rated CVE-2022-2156 , a use after free vulnerability discovered by an in-house Google Project Zero researcher. There are also two high-rated vulnerabilities, CVE-2022-2157 is another use after free one plus CVE-2022-2158 , a type confusion issue.
The three medium and three low-risk vulnerabilities are, in order, as follows: CVE-2022-2160 (insufficient policy enforcement in DevTools), CVE-2022-2161 (use after free in WebApp provider), CVE-2022-2162 (insufficient policy enforcement in File System API), CVE-2022-2163 (use after free in Cast UI and toolbar), CVE-2022-2164 (inappropriate implementation in Extensions API) and CVE-2022-2165 (insufficient data validation in URL formatting). Follow me on Twitter or LinkedIn . Check out my website or some of my other work here .
Davey Winder Editorial Standards Print Reprints & Permissions.
From: forbes
URL: https://www.forbes.com/sites/daveywinder/2022/06/23/google-chrome-103-critical-security-warning-for-3-billion-windows-mac–linux-users/