“A high-severity bug in Googles Chrome web browser, which the company claimed is already being actively exploited in the wild, was patched on Monday by security updates.The CVE-2023-3079 vulnerability, which affects the V8 JavaScript engine, is known as a type misunderstanding flaw. On June 1, 2023, the problem was reported by Clement Lecigne of Googles Threat Analysis Group.
According to the National Vulnerability Database of NIST, Type confusion in V8 in Google Chrome prior to 114.0.5735.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. The IT giant did not publish the specifics of the attacks, as is customary, but did state that it is aware that an exploit for CVE-2023-3079 exists in the wild.”