Skip to main content
Announcements

Google Chrome Zero-Day

28 March, 2022

We received a notification regarding Chrome Zero-Day Vulnerability which came on 25th March 2022. Google has issued an emergency security update for 3.2 billion Chrome users.

Reference Articles

https://thehackernews.com/2022/03/google-issues-urgent-chrome-update-to.html 
https://chromereleases.googleblog.com/2022/03/stable-channel-update-for-desktop_25.html 
https://www.forbes.com/sites/daveywinder/2022/03/26/google-confirms-emergency-security-update-for-32-billion-chrome-users-attacks-underway/?sh=6f1f8d47aaa2 

On further research, we found that we will have to patch all chromium-based browsers like Edge, Brave, etc. as they are impacted as well.

Recommended Action

We’ve written a script to fix all chromium-based browsers. We recommend running this on all machines in your environment over the next few days effective in the next hour.

Procedure name: "Chromium Based Zero-Day Vul Fix" - It's a master procedure, running multiple other sub-procedures to fix these vulnerabilities targeting different browsers.

Once remediated, it will update the custom field with the status "GOOD".

If the script is blocked by AV it will update "Log Missing" in the CF. The script, log, data, and report are located on each machine at our standard logging location.

Known Issues

No Issues Reported.

Announcements
28 March 2022
# Topics
Automation
Security
Vulnerability

Announcements

7-ZIP Vulnerability

20 April 2022

Log4J Vulnerability

20 December 2021

Latest Posts