Chrome 146 Update Patches Two Exploited Zero-Days

Google has released Chrome 146, patching two zero-day vulnerabilities that were being actively exploited by attackers. These flaws, which can be used to manipulate data and bypass security restrictions, potentially allow for code execution, giving attackers significant control over a compromised system. The update is critical, as zero-day exploitation means that the vulnerabilities were being used by attackers before a patch was available, putting defenders at a disadvantage. The vulnerabilities in question are particularly concerning, as they can be used to carry out complex attacks. By patching these flaws, Google is helping to prevent further exploitation and protect users from potential security threats. The fact that these vulnerabilities were being exploited before a patch was available highlights the importance of keeping software up to date, as delayed updates can leave users exposed to known vulnerabilities¹. This matters to security practitioners, as it underscores the need for prompt patch management to prevent exploitation of known flaws.