Security Alert: Critical Vulnerability in Google Chrome and Microsoft Edge

30 Mar 2022

Security Alert: Critical Vulnerability in Google Chrome and Microsoft Edge

The Common Vulnerability Exposure “CVE-2022-1096” has been categorised as a high severity security vulnerability as it is affecting billions of Google Chrome and Microsoft Edge users around the world.

In their latest security advisory, Google and Microsoft have confirmed that this vulnerability is actively being exploited. All previous versions of Google Chrome and Microsoft Edge are vulnerable. Technical details regarding this exploit will not be disclosed until most users have updated their browsers. However, Google confirmed the severity of this vulnerability and issued an urgent patch only for this flaw, which is rare.
 
The high severity flaw CVE-2022-1096 has been dubbed as “Type Confusion in V8” by the Chrome team that affects the V8 JavaScript engine which is responsible for the parsing of JavaScript code and other scripts. Even though Google has not published the exploitation details, Type Confusion errors follow the following pattern:

  • Incompatible data types are used to access an object in application codes
  • The application crashes due to buffer overflows and out of bound memory
  • Cybercriminals can parse malicious codes through out of bound memory access 

This flaw gives the possibility to cybercriminals to run malicious codes within the browser. 

BIRGER. strongly recommends to update :

  • Google Chrome browser to the latest version 99.0.4844.84. This version is being rolled out by Google around the the world.
  • Microsoft Edge browser to the latest version 99.0.1150.55 which came out on 26 March 2022. 

Users must check for the availability of these versions in their region.

Steps to update:

Google Chrome:

  1. From the chrome menu head to Help >About Google Chrome, and it will automatically start downloading the latest updates.
  2. To check if the update was successful click the Relaunch button as illustrated below.

Google Chrome

Microsoft Edge:

  1. In Microsoft Edge browser, click on the 3 dots (...) on the very right-hand side of the window
  2. Click on Help and Feedback
  3. Click on About Microsoft Edge
  4. The browser will start to download updates. Once done restart the browser.

Microsoft Edge

For more information on the topic and our Cyber Security Solutions & Services, please contact us by mail security@birger.technology.

You may also like

10 Apr 2020

COVID-19: National Lockdown and Curfew extended to 4 May 2020

The national lockdown and curfew in Mauritius have been extended until 4 May 2020, our office in Port Louis remains closed with the exception of our Technology Operation Centre.

Read More

27 Sep 2016

BIRGER. veut engranger 75 % de ses revenus de l’Afrique d’ici 2020

«L’un des principaux défis technologiques auxquels sont confrontées les entreprises en Afrique est la cybersécurité, explique le Chief Executive Officer (CEO) de Birger, Jacques Harel.

Read More

10 May 2024

BCAW+R 2024: Proactive Preparedness

The theme of the 1st NewsIT of our series of 6 articles to foster Resiliency during BCAW+R week is ‘Proactive Preparedness: Anticipating Disruptions to Ensure Business Continuity’.

Read More