Follow : Add us as a preferred source  on Google.

Key takeaways

• A new zero-day vulnerability affects Google Chrome.
• The flaw has already been exploited in the wild.
• The zero-day could allow attackers to run malicious code.

Another day, another zero-day, at least for Google Chrome. In an advisory released Monday, Google warned of a dangerous new security vulnerability affecting its popular browser. Fortunately, the latest update squashes the bug. Here are the details.

Rated as a high security flaw, the zero day labeled CVE-2025-13223 is described as: "Type Confusion in V8 in Google Chrome prior to 142.0.7444.175 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page."

Also: I used this free tool to see what data the internet has on me - and the results were disturbing

In plain English, Chrome's V8 JavaScript engine fails to correctly treat a specific type of data, leading to memory corruption. An attacker could exploit that weakness through a web page designed to run malicious code or otherwise wreak havoc with the browser.

In its advisory, Google revealed that an exploit for the flaw exists in the wild. That means attackers were aware of the vulnerability and already tried to take advantage of it to prey on potential victims.

Zero-day flaws are particularly serious as they represent an open invitation to hackers. They're known as zero days because the vendor doesn't know about them (e.g., knows about them for zero days). As such, no patch exists, allowing attackers to easily exploit them.

Also: AI's scary new trick: Conducting cyberattacks instead of just helping out

This latest flaw was discovered on Nov. 12 by Google's own Threat Analysis Group, which hunts for security flaws, cyberattacks, phishing campaigns, and other threats. The group also keeps tabs on Advanced Persistent Threats (APTs) and attacks by government-sponsored entities.

This marks the seventh zero day discovered in Chrome this year, noted Bleeping Computer. Six other vulnerabilities were patched in March, May, June, July, and September.

With a patch rolled out for this type of vulnerability, Chrome should automatically update itself. But you should manually check to make sure.

In Chrome, click the three-dot icon in the upper right, go to Help, and select "About Google Chrome." The browser will automatically download and install the latest update, if necessary. After Chrome restarts, return to the About page. Make sure that you're running Chrome 142.0.7444.175/.176 for Windows, 142.0.7444.176 for Mac, or 142.0.7444.175 for Linux.

Featured

I stopped leaving these 7 gadgets plugged in, and my electric bill thanked me

I saw the future of TVs at Samsung's South Korea lab - and I'm excited for these 3 things

Is ChatGPT Plus still worth $20? How it compares to the Free and Pro plans

Beware the 'Hi, how are you?' text. It's a scam - here's how it works

• I stopped leaving these 7 gadgets plugged in, and my electric bill thanked me
• I saw the future of TVs at Samsung's South Korea lab - and I'm excited for these 3 things
• Is ChatGPT Plus still worth $20? How it compares to the Free and Pro plans
• Beware the 'Hi, how are you?' text. It's a scam - here's how it works