all InfoSec news
Chrome patches another exploited Zero-day vuln
April 19, 2023, 1:54 p.m. | /u/Beef_Studpile
cybersecurity www.reddit.com
Tl;DR: Remote Sandbox escape vuln ([CVE-2023-2136](https://nvd.nist.gov/vuln/detail/CVE-2023-2136)).
* CVSSv3 = not calculated, guessing 7.0-9.0 range
* Remote=yes
* ACE = not confirmed
* Interaction required = yes
* Patch available
* 112.0.5615.138 or newer
* Scope: = Chromium
* Edge and other browsers in-scope
* Exploited in wild = maybe? (google hasn't released much information on this claim)
\--------
[MFW](https://youtu.be/Ea8GyscSFaQ) seeing this in the news this morning.
ace browsers chrome chromium claim cybersecurity edge exploited google information patch patches scope vuln yes zero-day
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Senior Security Specialist
@ Lely | Maassluis, Netherlands
IT Security Manager (Corporate Security) (REF822R)
@ Deutsche Telekom IT Solutions | Budapest, Hungary
Senior Security Architect
@ Cassa Centrale Banca - Credito Cooperativo Italiano | Trento, IT, 38122
Senior DevSecOps Engineer
@ Raft | Las Vegas, NV (Remote)
Product Manager - Compliance
@ Arctic Wolf | Remote - Colorado