A Zero Day exploit for Chrome was found in the wild and reported back on Nov 13th (2023). The exact details remain under wraps for now, but reports from Google indicate that it may be an integer overflow in a library used to render 2D graphics on web pages, which when exploited could crash the browser and allow an attacker to gain some sort of access on the system (details are not clear). Google has already patched this as of Nov 28th, so make sure you are up to date! Check here for instructions on updates if needed.
For reference, the patched versions are:
- Mac and Linux – 119.0.6045.199
- Windows – 119.0.6045.199/.200 (apparently this will be rolling out soon if not available to you yet)
Sources: https://www.cve.org/CVERecord?id=CVE-2023-6351, https://chromereleases.googleblog.com/2023/11/stable-channel-update-for-desktop_28.html, https://www.pcgamer.com/chrome-and-chromium-based-browser-zero-day-exploit-that-exists-in-the-wild-has-been-patched-but-an-estimated-4-billion-people-may-still-be-affected/