A use-after-free vulnerability in the WebRTC component of Google Chrome may lead to system compromise if successfully exploited.

This is a use-after-free vulnerability within the WebRTC implementation. An attacker could exploit this by enticing a user to visit a malicious website, leading to potential code execution or application instability.

As a browser-based vulnerability, the impact is significant for all users within an organization. A CVSS score of 8.8 indicates high risk, as exploitation can result in the compromise of user sessions, data theft, or malware installation on endpoints.

Immediate Action: Update Google Chrome to version 147 or later immediately.

Proactive Monitoring: Monitor for browser-related security alerts and ensure that automatic update mechanisms are functioning across the fleet.

Compensating Controls: Use browser-based security policies to restrict the execution of untrusted scripts or plugins.

Public Exploit Available: false

Browser vulnerabilities are frequently targeted. Organizations must ensure that all endpoints are running the latest version of Google Chrome to mitigate the risk of drive-by attacks exploiting this use-after-free flaw.