CVE-2021-30551 was used in attacks by the same group that exploited the zero-day vulnerability in Windows.
Google released Chrome version 91.0.4472.101 for Windows, macOS and Linux, fixing a total of 14 vulnerabilities, including a zero-day vulnerability exploited in real-world attacks.
According to experts, the 0Day vulnerability, identified as CVE-2021-30551, was used in attacks by the same group that exploited the CVE-2021-33742 vulnerability in Windows, fixed by Microsoft as part of the June Patch Tuesday.
June 8, “Kaspersky Lab” has published a report on the activities of PuzzleMaker groups, using the vulnerability in Windows zero-day (CVE-2021-31955 and CVE-2021-31956), along with a chain of vulnerabilities in Chrome in the attacks on the company worldwide. CVE-2021-31955 and CVE-2021-31956 are also fixed by the manufacturer.
In addition to CVE-2021-30551, Google has eliminated a number of dangerous vulnerabilities in various browser components, in particular, BFCache, ANGLE, V8 and other services.
This is the sixth zero-day vulnerability patched by Google this year. In February, the company fixed CVE-2021-21148, in March – CVE-2021-21166 and CVE-2021-21193, in April – CVE-2021-21220 and CVE-2021-21224.
Catch up on more stories here
Follow us on Facebook here