April 16, 2024

All Google Chrome customers ought to replace instantly to deal with a zero-day vulnerability that’s being actively exploited.

Considered one of Google’s personal researchers, Clément Lecigne of the Menace Evaluation Group (TAG), found the flaw. In response to fellow TAG researcher Maddie Stone, the flaw is being actively exploited “by a business surveillance vendor.”

.@_clem1 found one other ITW 0-day in use by a business surveillance vendor: CVE-2023-5217. Thanks to Chrome for releasing a patch in TWO ????day!!

Maddie Stone (@maddiestone) — September 27, 2023

Once more, all customers ought to replace instantly.