Summary
Google has identified a critical vulnerability in the newly launched Chrome 136, specifically an audio bug (CVE-2025-4372) that can allow hackers to execute malicious code remotely. This vulnerability requires minimal user interaction, making it a significant threat. Google has released a patch for this issue, advising users to update their browsers to ensure protection.
Key Points
- CVE-2025-4372 is rated between 9.8 and 10 for severity, whilst Google rates it medium.
- The issue lies within the WebAudio API, opening a pathway for potential attacks.
- No user privileges are required to exploit the vulnerability, just accessing a malicious webpage may suffice.
- A patch has been released with updates available for Windows, Mac, and Android users.
- It’s crucial for all Chrome users to update immediately to avoid falling victim to potential attacks.
Why should I read this?
This article breaks down a significant security risk that could impact your online safety. With hackers always looking to exploit vulnerabilities, being aware of this Chrome bug and the importance of timely updates is essential. Don’t wait for trouble to find you—read up and stay informed!