Google released another security update for Chrome 114 for Windows, Linux, and Mac on the 13th of June. The update fixes 5 vulnerabilities, one of which is critical and could lead to arbitrary code execution in the context of the logged-on user. This could in turn compromise business-critical data, and interrupt operations. We have updated the Chrome Vulnerability Audit report in Lansweeper to help you locate at-risk installations of Google Chrome.
Multiple Chrome Vulnerabilities Fixed
This latest Chrome security update fixes several critical and high-severity vulnerabilities. The most severe is a critical use after free vulnerability in Autofill payments (CVE-2023-3214). The vulnerabilities could lead to arbitrary code execution in the context of the logged-on user. Depending on the user's privileges an attacker could then install programs, compromise data, or create new accounts with full user rights. You can read the full details on Google's release page.
Update Vulnerable Google Chrome Installs
Google is keeping access to bug details and links for this security update restricted for now. This is done to prevent further exploitation of the vulnerability until a majority of users have had a chance to update to the fixed version of Chrome. Make sure to update all Google Chrome installations on Windows, Linux, and Mac to the newest version to keep your network safe. For Mac and Linux that is 114.0.5735.133 and 114.0.5735.133/134 for Windows.
Discover Vulnerable Chrome Installs
We have updated the Chrome 114 Vulnerability audit report to help you find all vulnerable Google Chrome installs in your network. This way you have an actionable list of devices that are not running the newest versions of Google Chrome yet and still require your intervention. You can get to the report via the link below.