Zero Day, a V8 type confusion Bug found On Google Chrome And Microsoft Edge Browsers.
Google issue the security warning for its billion users for Windows, Mac and Linux operating system.
Chrome on Windows, macOS and Linux is vulnerable to a new ‘zero-day’ hack (CVE-2022-1096) disclosed by Google on its official Chrome blog.
A zero-day attack is the most dangerous method of attack because the hacker already knows about the vulnerability before Google releases a fix.
A vulnerability for CVE-2022-1096 exists in the wild, according to Google. Chrome users are at risk.
We would also like to thank all security researchers that worked with us during the development cycle to prevent security bugs from ever reaching the stable channel, said Google.
Google is aware that an exploit for CVE-2022-1096 exists in the wild.
Update your Chrome Browser now. The update is available for Chrome via version 99.0.4844.84 on Windows, Mac, and Linux.
High – CVE-2022-1096: Type Confusion in V8. Reported by anonymous researcher.
The Vulnerability affects on Microsoft Edge Browser too
Microsoft has now confirmed that the same zero-day hack affects its Edge browser. The company published a new update on its Security Response Center confirming that the exploit impacts all Chromium-based browsers: “The vulnerability assigned to this CVE is in Chromium Open Source Software (OSS) which is consumed by Microsoft Edge (Chromium-based).” This means that other Chromium-based browsers, including Amazon Silk, Brave, Opera, Samsung Internet (bundled on its Galaxy smartphones), Vivaldi and Yandex browser are all highly likely to have been affected.
The same day, Microsoft released Edge version 99.0.1150.55, which has fixed the issue.
Microsoft also confirms that it has released a fix for Edge based on the Chromium update that Google already launched for Chrome. To get it, follow these steps:
Go to Microsoft Edge browser, click on the 3 dots like (…) on the very right-hand side of the window
Click on ‘Help and Feedback’
Click on ‘About Microsoft Edge’.