A security feature in the Chrome web browser which has been designed to mitigate JavaScript memory corruption issues has security vulnerabilities

 

The earlier version of Chrome i.e., beforehand 128.0.6613.84, allows a remote attacker to potentially exploit memory corruption or access all the system or server resources via a constructed HTML page.

INSIGHTS ABOUT THE THREAD:

Chrome V8 Engine, has been designed in JavaScript engine which executes the JavaScript code.  V8 is written in C++ and it can execute the C++ programs which knobs the file system, database and network connections and  this permits to construct C++ in JavaScript, and this will be executed via V8.

It can execute JavaScript code either within or outside of a browser.

V8 is used in the Chromium-based web browsers - Google Chrome, Brave, Opera, Vivaldi, Microsoft Edge, and in the Couchbase database server.

Hence forth using this exploitation, if the organization/individuals have old browsers in machines or in server entire organization/individuals’ data in filesystem & databases, and network can be controlled/accessed.

Hence as part of DevOps Security Practices, it is encouraged to update the browser to the latest version to come over these security vulnerabilities.