A serious security flaw has appeared on the Chrome browser. Photo: Bleepingcomputer .

In a statement on April 15 on the official blog, Google expert Prudhvi Kumar confirmed two new security vulnerabilities, affecting most Chrome browser users.

Google has not released detailed information about these two security vulnerabilities because the impact is too great for billions of users who have not upgraded to the new version. Currently, they only identify the errors, evaluate the level and give a general description.

That is the "critical" security bug CVE-2025-3619 , reported by Elias Hohl on April 9, 2025, describing a heap buffer overflow in Codec. The other, more worrying vulnerability, CVE-2025-3620 , was reported on March 21, 2025, by a security researcher with the alias @retsew0x01 .

According to Forbes , if CVE-2025-3620 is successfully exploited, an attacker could execute arbitrary code and potentially open the door to system compromise.

Chrome has been updated to version 135.0.7049.95/.96 for Windows and Mac users, version 135.0.7049.95 for Linux users, and 135.0.7049.100 for Android users. Bommana said these updates will be "rolling out in the coming days/weeks."

With about 3.5 billion users, Google Chrome is the most popular web browser in the world. The huge number of users is also a factor attracting hackers and cybercriminals who are constantly searching for and exploiting security flaws in this software.

To protect itself, Google is constantly scanning for new vulnerabilities that could allow attackers to compromise user data. In 2024, it paid out a total of $11.8 million in bounties to security researchers who reported bugs in Chrome.

To update to the latest version, users access the Settings menu, go to About Google Chrome . The process of downloading the new software version will take place automatically. Finally, restart the browser to complete.

Source: https://znews.vn/hang-ty-nguoi-dung-chrome-can-cap-nhat-ngay-post1546492.html