Google Chrome hit by another serious security flaw - update your browser ASAP

Kyle Kucharski/ZDNET

Google has patched yet different captious information bug successful Chrome, which means each of you who usage the browser should update it ASAP. On Monday, the institution revealed a high-severity vulnerability that could let a distant attacker to tally malicious codification connected your system.

In its release notes for the latest mentation of Chrome, Google pointed to the information flaw tagged arsenic CVE-2025-6554. The NIST leafage connected this one describes it as: "Type disorder successful V8 successful Google Chrome anterior to 138.0.7204.96 allowed a distant attacker to execute arbitrary read/write via a crafted HTML page."

Also: This Google Chrome update could alteration the fundamentals of browsing - here's who gets to effort it first

V8 is an open-source JavaScript and WebAssembly motor that Google uses successful Chrome. Here, a programming occupation successful the codification could springiness a distant attacker the means to make a malicious web leafage designed to bargain data, instal malware, oregon instrumentality implicit your system. The vulnerability has already been exploited successful the wild, which means the atrocious guys are onto it and person utilized it to people unsuspecting Chrome users.

This peculiar bug was discovered by Clément Lecigne of Google's Threat Analysis Group connected June 25. To assistance with its bug-hunting efforts, Google's researchers typically crook to specified tools arsenic AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, and AFL.

Thankfully, Google has rolled retired a hole for this flaw with the latest versions of the browser, specifically mentation 138.0.7204.96/.97 for Windows, 138.0.7204.92/.93 for the Mac, and 138.0.7204.92 for Linux.

How to update Chrome

To update Chrome, unfastened the browser, click the three-dot icon astatine the top, determination to Help, and prime About Chrome. The programme volition automatically download and instal the latest update. Relaunch Chrome, and you'll beryllium afloat protected, astatine slightest until the adjacent captious vulnerability rolls around.

Chrome does person a past of being deed by information flaws, galore of them critical. Google tends to respond reasonably rapidly with the indispensable patches. But with truthful galore vulnerabilities and truthful galore patches, updating the browser seems similar a never-ending job. Still, immoderate flaw that's already been exploited successful the chaotic should beryllium taken seriously. That's wherefore you'll privation to update Chrome present if you haven't already done so.

Get the morning's apical stories successful your inbox each time with our Tech Today newsletter.