Google Chrome for iOS is affected by a high-severity use-after-free vulnerability that could result in unauthorized code execution.

This is a use-after-free memory corruption vulnerability in the iOS version of the Chrome browser. An unauthenticated attacker can exploit this by enticing a user to navigate to a specially crafted malicious webpage.

Successful exploitation compromises the integrity and confidentiality of the mobile device's browser environment. With a CVSS score of 8.8, this vulnerability poses a significant threat to mobile device security and organizational data accessed via mobile platforms.

Immediate Action: Update Google Chrome for iOS to the latest available version (149 or higher) via the Apple App Store.

Proactive Monitoring: Monitor mobile device management (MDM) consoles to ensure all managed devices are running the patched version of the software.

Compensating Controls: Utilize mobile threat defense (MTD) solutions to detect malicious web traffic or suspicious browser activity on mobile endpoints.

Public Exploit Available: false

Mobile security is a critical perimeter; administrators must ensure that all iOS devices have updated the Chrome application to the latest version to prevent potential exploitation.