Google Chrome has been targeted by an active in-the-wild exploit tied to a high-severity zero-day vulnerability tracked under Chromium issue ID 466192044. The vulnerability resides in the Almost Native Graphics Layer Engine (ANGLE) library, specifically within the Metal renderer implementation. The root cause is improper buffer sizing due to misuse of pixelsDepthPitch, which is based on GL_UNPACK_IMAGE_HEIGHT and can be smaller than the actual image height. This leads to a buffer overflow condition, potentially causing memory corruption, program crashes, or arbitrary code execution. Google has not disclosed the CVE identifier or detailed technical specifics to prevent exploitation by other threat actors and to allow users time to patch. The vulnerability is actively exploited, indicating real-world attacks are ongoing. Google released security updates for Chrome versions 143.0.7499.109/.110 on Windows, macOS, and Linux to address this and other vulnerabilities. The update also fixes seven other zero-day flaws exploited or demonstrated this year, plus two medium-severity issues. Users of other Chromium-based browsers such as Microsoft Edge, Brave, Opera, and Vivaldi are advised to apply patches once available. The exploit's active status and potential for arbitrary code execution make it a critical threat to user security and system integrity.

European organizations face significant risks from this vulnerability due to widespread use of Google Chrome and Chromium-based browsers in enterprise environments. Exploitation could allow attackers to execute arbitrary code remotely, leading to data breaches, system compromise, and disruption of business operations. Confidentiality of sensitive information may be jeopardized if attackers gain unauthorized access. Integrity and availability of systems could be affected through memory corruption and crashes. Sectors relying heavily on browser-based applications, such as finance, healthcare, and government, are particularly vulnerable. The active exploitation increases the likelihood of targeted attacks against high-value European entities. Additionally, the lack of detailed public information complicates detection and response efforts, increasing exposure time. Failure to promptly patch could result in widespread compromise across organizations using affected browsers.

European organizations should immediately update Google Chrome to versions 143.0.7499.109/.110 or later on all supported platforms. IT teams must verify successful deployment via centralized patch management tools and ensure end-users apply updates promptly. Organizations using other Chromium-based browsers should monitor vendor advisories and apply patches as soon as they are released. Network security controls should be enhanced to detect anomalous browser behavior and potential exploit attempts, including monitoring for unusual memory usage or crashes linked to ANGLE. Endpoint detection and response (EDR) solutions should be tuned to identify exploitation indicators related to buffer overflows in graphics libraries. User awareness campaigns should emphasize the importance of browser updates and caution against suspicious links or downloads. Where possible, organizations should implement application whitelisting and sandboxing to limit the impact of potential exploits. Finally, incident response plans should be reviewed and updated to address exploitation scenarios involving browser vulnerabilities.