Chrome patches another exploited Zero-day vuln | allinfosecnews.com

April 19, 2023, 1:54 p.m. | /u/Beef_Studpile

cybersecurity www.reddit.com

[https://www.bleepingcomputer.com/news/security/google-patches-another-actively-exploited-chrome-zero-day/](https://www.bleepingcomputer.com/news/security/google-patches-another-actively-exploited-chrome-zero-day/)

Tl;DR: Remote Sandbox escape vuln ([CVE-2023-2136](https://nvd.nist.gov/vuln/detail/CVE-2023-2136)).

* CVSSv3 = not calculated, guessing 7.0-9.0 range
* Remote=yes
* ACE = not confirmed
* Interaction required = yes
* Patch available
* 112.0.5615.138 or newer
* Scope: = Chromium
* Edge and other browsers in-scope
* Exploited in wild = maybe? (google hasn't released much information on this claim)

\--------

[MFW](https://youtu.be/Ea8GyscSFaQ) seeing this in the news this morning.

ace browsers chrome chromium claim cybersecurity edge exploited google information patch patches scope vuln yes zero-day

More from www.reddit.com / cybersecurity

FTC bans non competes. F yeah. 4 hours ago | www.reddit.com

bans cybersecurity ftc non

Has anyone tried SentinelOne's Purple AI? What are your thoughts on it? 4 hours ago | www.reddit.com

cybersecurity purple purple ai sentinelone +1

Is experience more valuable than a degree ? 5 hours ago | www.reddit.com

analyst cybersecurity cybersecurity analyst experience +6

Suspected NK hackers infect AV service of Avast using MITM 5 hours ago | www.reddit.com

Faking domains in google ads? 7 hours ago | www.reddit.com

case cybersecurity don found +13

Incident Response Guide and IRGuideBook 8 hours ago | www.reddit.com

application article artifact cybersecurity +11

Can you help me to understand the very different figures I see in Mandiant's "M-Trends … 10 hours ago | www.reddit.com

attacker breach can compromise +19

Starting out in Cybersecurity 10 hours ago | www.reddit.com

cybersecurity doing electrical engineering +6

Grafana backend sql injection affected all version 12 hours ago | www.reddit.com

backend cybersecurity grafana injection +3

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Senior Security Specialist

@ Lely | Maassluis, Netherlands

View on infosec-jobs.com

IT Security Manager (Corporate Security) (REF822R)

@ Deutsche Telekom IT Solutions | Budapest, Hungary

View on infosec-jobs.com

Senior Security Architect

@ Cassa Centrale Banca - Credito Cooperativo Italiano | Trento, IT, 38122

View on infosec-jobs.com

Senior DevSecOps Engineer

@ Raft | Las Vegas, NV (Remote)

View on infosec-jobs.com

Product Manager - Compliance

@ Arctic Wolf | Remote - Colorado

View on infosec-jobs.com