HomeCyber SecurityCritical Google Chrome Zero-Day Vulnerability - CVE-2023-6345

Critical Google Chrome Zero-Day Vulnerability – CVE-2023-6345

Chrome Zero Day – CVE-2023-6345 – Google has swiftly addressed seven security concerns, notably tackling a zero-day vulnerability, CVE-2023-6345.

This high-severity flaw revolves around an integer overflow bug discovered by Benoît Sevens and Clément Lecigne from Google’s Threat Analysis Group (TAG) within the open source 2D graphics library, Skia. Detected on November 24, 2023, Google moved promptly to deploy security updates, underscoring the critical nature of the issue.

Urgent Update: CVE-2023-6345 Exploited in the Wild

The urgency of this update underscores the acknowledgment that there is active circulation of an exploit for CVE-2023-6345. The exploit’s existence in the wild signifies potential real-world threats, although Google has not divulged specific details regarding the nature of these attacks or the entities behind them. Notably, this development mirrors a past incident in April 2023 when Skia patched a similar integer overflow flaw (CVE-2023-2136) after it became a victim of zero-day exploitation. This prompts speculation that CVE-2023-6345 might be intricately linked or could potentially serve as a patch bypass for its predecessor.

Secure Your Browsing Experience: Actionable Steps for Users

To ensure user safety, Google strongly recommends users upgrade to Chrome version 119.0.6045.199/.200 for Windows and 119.0.6045.199 for macOS and Linux. Additionally, Google advise users of Chromium-based browsers, such as Microsoft Edge, Brave, Opera, and Vivaldi, to promptly apply these fixes once they become available. The emphasis on immediate action underscores the severity of the situation, aiming to mitigate potential threats posed by this zero-day exploit.

In conclusion, the proactive measures taken by Google reflect a commitment to user security. Keeping software up-to-date remains a fundamental defense against emerging threats, particularly in the context of active zero-day exploits. Google urge users to prioritize these updates and follow best practices to strengthen their online safety in the face of evolving cyber threats.

A cybersecurity practitioner with more than 5 years of experience in the cybersecurity world. Has an interest in creating simple blog websites, learning about SEO and graphic design, writing, AI, and understanding the concepts of journalism. Intentionally created this website to make the world of cybersecurity more engaging by combining it with journalistic principles and presenting cybersecurity stories that are easy to understand, which can help anyone who wants to develop in the cybersecurity world.



  1. I don’t understand about this article because i am Indonesian, so very difficult to understand it

    Salam MediaWeb4u


Please enter your comment!
Please enter your name here

four × four =

Most Popular


- Advertisement -