What is it?
Google announced an emergency fix for a vulnerability in the Chrome web browser on Thursday, 14 APR 2022. This vulnerability is reportedly being actively exploited and is documented as CVE-2022-1364.
Why is this important?
Google is aware that an exploit for CVE-2022-1364 exists in the wild. Bad actors could leverage this vulnerability to obtain unauthorized access to your system or data if you visit a malicious website with a vulnerable browser.
What do I do?
Information Services is applying updates to university-managed systems. For personally managed systems, apply the latest security patches available for Google Chrome to bring your browser to version 100.0.4896.127. Please refer to SpiderTechNet for instructions on how to update your browser on systems you personally manage.
References
SpiderTechNet Chrome Support: Article - Google Chrome (richmond.edu)
Security Week Article: Google Patches Third Actively Exploited Chrome Zero-Day of 2022 | SecurityWeek.Com