Google has rolled out an urgent security update for Chrome, addressing four high-severity vulnerabilities that could allow attackers to execute malicious code or compromise user data. The update, Chrome version 133.0.6943.98/.99 for Windows/Mac and 133.0.6943.98 for Linux, targets critical flaws in core browser components, including the V8 JavaScript engine and navigation systems. Security experts emphasize that delaying updates increases exposure to attacks leveraging these flaws, particularly through phishing campaigns or malicious websites. These vulnerabilities, rated 9.8/10 on the CVSS scale, pose severe risks, including remote code execution and denial-of-service attacks. Enterprise administrators are advised to deploy patches immediately, as exploits targeting these vulnerabilities could bypass security sandboxes and compromise organizational networks. This update follows a series of high-severity fixes in recent months, including patches for V8 type confusion (CVE-2025-0291) and Skia heap corruption (CVE-2025-0444). Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. CVE-2025-0995: A use-after-free flaw in Chrome’s V8 JavaScript engine, allowing remote attackers to exploit heap corruption via crafted HTML pages.
This Cyber News was published on cybersecuritynews.com. Publication date: Thu, 13 Feb 2025 02:10:14 +0000