However, the company refrained from sharing any details on the issue, as is the case with such zero-day vulnerabilities, so as to prevent its further exploitation. In its recent report highlighting the issues and the security patch, Google states that the flaw was first reported by an anonymous researcher on July 12. It is a type of confusion vulnerability, meaning that it can allow attackers to access data in an unauthorized way, executing malicious code.
The critical security lapse has been found with the browser's V8 open-source and JavaScript engine (CVE-2021-30563). The update introduces patches for a total of eight vulnerabilities with the browser, one of which is a zero-day vulnerability, meaning that the security lapse has been discovered but has not yet been patched on all systems. The new update for Chrome is being rolled out for Windows, Mac, and Linux devices.
