Google has issued an urgent security update for Chrome desktop browsers as of November 17, targeting two critical vulnerabilities, including an actively exploited zero-day flaw. The update, available in versions 142.0.7444.175 and 142.0.7444.176, addresses type confusion vulnerabilities CVE-2025-13223 and CVE-2025-13224 in the V8 JavaScript engine. The National Vulnerability Database warns that these flaws, which have a CVSS score of 8.8, could allow remote attackers to exploit specially crafted HTML pages, potentially leading to heap memory corruption. This update marks the seventh zero-day vulnerability patched by Google in 2025, with a notable focus on the V8 engine. Users are advised to update their browsers immediately by going to Settings > About Chrome, where the latest security updates will be automatically installed.
Is Your Google Chrome Browser Safe from the Latest Zero-Day Threat?
