Google Patches High-Risk Zero-Day Chrome Flaw; Urges Immediate Update
April 4, 2024![Google Patches High-Risk Zero-Day Chrome Flaw; Urges Immediate Update](https://cdn.brief.news/images/stories/08173f2c540f6926832e70ccaf56170bc6dae1ee475f0ebd8b91f8367e75a90a6a50f9343d897f8ee5507dfe2931ae7d163292b5600e125067d75b9edf835691.jpg)
Google has released a new Chrome update to address a high-severity zero-day vulnerability, CVE-2024-3159.
The CVE-2024-3159 vulnerability involves out-of-bounds memory access in the V8 JavaScript engine and was disclosed by Edouard Bochin and Tao Yan of Palo Alto Networks.
CVE-2024-3159 could allow remote attackers to access sensitive data or cause a system crash.
This fix is one of four zero-day vulnerabilities patched by Google in Chrome this year.
Google also remedied two other high-severity issues, CVE-2024-3156 and CVE-2024-3158, and previously addressed two vulnerabilities from Pwn2Own Vancouver 2024.
Users are urged to update their Chrome browsers to the latest version to safeguard against these threats; there have been no reports of active exploitation in the wild.
Summary based on 3 sources
Get a daily email with more Tech stories
Sources
![Google fixes one more Chrome zero-day exploited at Pwn2Own](https://cdn.brief.news/images/links/08173f2c540f6926832e70ccaf56170bc6dae1ee475f0ebd8b91f8367e75a90a6a50f9343d897f8ee5507dfe2931ae7d163292b5600e125067d75b9edf835691.jpg)
BleepingComputer • Apr 3, 2024
Google fixes one more Chrome zero-day exploited at Pwn2Own![Google Patches Chrome Flaw That Earned Hackers $42,500 at Pwn2Own](https://cdn.brief.news/images/links/4cfc3845112b8e5379881f7028d4e9fc4bf1be13aca8be8d53c2901be3379796d5f7b989e2f59940e8020391d45bec7ae708d5cc12f4c7c43f5e8a894070e881.jpg)
SecurityWeek • Apr 3, 2024
Google Patches Chrome Flaw That Earned Hackers $42,500 at Pwn2Own![Google fixed another Chrome zero-day exploited at Pwn2Own](https://cdn.brief.news/images/links/d061065617dd379dac5dfc392de4ab0847c232d10ab38cc3a7a1f8193de19f7094b3bcc5f717fcb7ae2de9c173698e0b5825293c87cb8fb333e8b34450e627d3.jpg)
Security Affairs • Apr 3, 2024
Google fixed another Chrome zero-day exploited at Pwn2Own