Google has urgently updated its Chrome browser to address a newly discovered vulnerability that attackers are actively exploiting. This marks the third zero-day vulnerability fixed this year. The flaw affects the JavaScript V8 module, allowing potential arbitrary code execution through incorrect memory access. Discovered by Google’s Threat Analysis Team, a countermeasure was swiftly implemented. The update, Chrome version 137.0.7151.68/.69 for Windows and macOS and 137.0.7151.68 for Linux, is being rolled out to users automatically, though manual updates are recommended for immediate protection. Google is withholding detailed information about the vulnerability to prevent further exploitation, planning to disclose more once users have widely adopted the update. This vulnerability is part of a series of critical security issues affecting Chrome in 2025, following similar incidents in March and May. In 2024, Google faced ten zero-day vulnerabilities, highlighting the continued focus of attackers on web browsers and the importance of rapid updates for IT security.
Has Google fixed a critical security flaw in Chrome?
