Google has released a fix for a previously unknown vulnerability called CVE-2023-2033. The company released on Friday notification about safety with a warning: “Google is aware that the CVE-2023-2033 exploit exists in the real world“.
Google discovered the flaw thanks to Clément Lecigne, a security researcher on the company’s threat intelligence team, which tracks elite hackers and discovers zero-day vulnerabilities.
The company’s patch ships in Chrome version 112.0.5615.121. A Chrome refresh button should appear in the top-right corner of the browser. Otherwise, click the About Chrome tab to get the update automatically, or visit the Google Support page (opens in a new window) to learn how to download the patches. CVE-2023-2033 is the first zero-day vulnerability found in Chrome this year.