Google has released an emergency security update for the Chrome web browser to fix an actively exploited zero-day vulnerability.

The vulnerability, tracked as CVE-2023-4863, is a type of confusion bug in the V8 JavaScript engine. It allows an attacker to execute arbitrary code with the privileges of the user running Chrome.

Buy Me A Coffee

“Google is aware that an exploit for CVE-2023-4863 exists in the wild,” the company revealed in a security advisory published on Monday.

The update to fix CVE-2023-4863 is available for Windows, Mac, and Linux. Users are advised to update their browsers as soon as possible.

This is the fourth Chrome zero-day vulnerability that has been exploited in attacks this year. Google has released emergency updates to fix all of these vulnerabilities.