chrome

Critical Chrome Vulnerability Actively Exploited – Update Immediately

By Webbfabriken

Critical Chrome Vulnerability Actively Exploited – Update Immediately

Critical Chrome Vulnerability Actively Exploited – Update Immediately

Google has released an urgent security update for Chrome after a new zero-day vulnerability in the V8 engine was discovered under active exploitation. The vulnerability allows attackers to execute code through manipulated web pages.

Critical Vulnerability in V8 Engine

Google has confirmed that a new critical vulnerability in Chrome, tracked as CVE-2025-13223, is now being used in real attacks. The flaw is in the JavaScript and WebAssembly engine V8, where a type confusion can lead to memory corruption and, in the worst case, remote code execution just by visiting a maliciously crafted web page.

The vulnerability was reported by Clément Lecigne at Google TAG on November 12, but Google has not disclosed which attackers are behind the exploitation or what targets were affected.

Seventh Zero-Day This Year

With this patch, Google has now closed seven zero-days just this year, several of them in V8 – underscoring how attractive the engine is as an attack surface. Another related flaw, CVE-2025-13224, was discovered by Google's AI agent Big Sleep and has also been fixed.

Who Is Affected?

  • All Chrome users on Windows, macOS, and Linux should update immediately
  • Chromium-based browsers such as Edge, Brave, Vivaldi, and Opera are also affected and need to be patched as soon as updates are released

How to Update Chrome

Update Chrome to version 142.0.7444.175/176:

  1. Open Chrome
  2. Click the three dots (⋮) in the top right
  3. Go to Help > About Google Chrome
  4. Chrome automatically searches for and installs updates
  5. Restart the browser to activate the update

Monitor Developments – V8 Attacks Trending Upward

The number of attacks against the V8 engine has increased significantly in 2025. This demonstrates the importance of keeping your browser updated and having additional security layers.

Webbfabriken Helps You Stay Secure

At Webbfabriken's computer service, we help you:

  • Ensure all programs and systems are updated
  • Install and configure security solutions
  • Train your staff in security awareness
  • Implement WF SecurityCloud™ for proactive protection

Contact us for professional IT security:

Phone: +46 8-446 07 70

Learn more: Computer Service | WF SecurityCloud™

Need help turning this into concrete business results? Explore our Web Design, Web Development and SEO services, review Customer Cases, read our FAQ, or subscribe to our Newsletter.

Tags:

chrome security zero-day cybersecurity cve-2025-13223
← Back to all posts

Customer cases on the same topic

See how similar questions have been turned into concrete deliveries for real customers.

Daro Center for Special Needs

Daro Center

Daro Center for Special Needs is an educational center in the heart of Erbil, near the historic citadel in Iraq. The center offers learning and therapy...

Read customer case
Di Close

Di Close

Di Close is Sweden's leading executive network, founded by Dagens industri. The platform brings together thousands of executives and leaders for inspira...

Read customer case
Rönneberga Conference & Hotel

Rönneberga

Rönneberga is a well-known conference facility and hotel on Lidingö, with guests and corporate clients from all over Sweden. With high demands for secu...

Read customer case

Related Posts

Copy Fail is patched at Webbfabriken

Copy Fail with CVE-2026-31431 has been handled by Webbfabriken. All our servers are patched and WF SecurityCloud already had protection active.

Website Speed and Security, Why It Matters

A fast and secure website is essential for both visitors and search engines. Learn how to optimize your WordPress site or why a custom coded website might be the best choice for your business.

Continue within this topic

Move from insights to relevant services, proof and more reading inside the same topic cluster.

AI summary

A short factual Q&A summary for readers, search engines and AI services that need quick context about this page.

What is this page about?
Google warns of critical Chrome zero-day vulnerability (CVE-2025-13223) now used in real attacks. Update to version 142.0.7444.175/176 immediately.
Who is this page relevant for?
The page is relevant for companies and organisations that want to understand how Webbfabriken works with web, operations, IT and cybersecurity.
What can the visitor do next?
The visitor can continue reading, compare solutions and contact Webbfabriken when they need help with a specific need.
Where is this page available?
The page is available at webbfabriken.com/blog/chrome-zero-day-vulnerability-cve-2025-13223.