Chrome undisclosed high-severity 466192044 active exploitation security flaw
Vulnerability
Summary
Hide ▲
Show ▼
Chrome has an undisclosed high-severity flaw tracked as Chromium issue tracker ID 466192044 that is actively exploited in the wild, putting browser users at immediate risk. Google has withheld the CVE and affected component details while disclosure remains under coordination. The company has already shipped fixes for Chrome and urged users to install 143.0.7499.109/.110 on Windows and macOS or 143.0.7499.109 on Linux.
Related Happenings
Chromium JavaScript background RCE flaw
Vulnerability
First: 21.05.2026 21:13
Last: 21.05.2026 21:13
Sources 1
About this happening:
The unfixed **Chromium** flaw keeps **JavaScript** running after the browser is closed, creating **remote code execution** risk across **Chromium-based browsers**. A malicious sit...
Chromium JavaScript background RCE flaw
VulnerabilityAbout this happening: The unfixed **Chromium** flaw keeps **JavaScript** running after the browser is closed, creating **remote code execution** risk across **Chromium-based browsers**. A malicious sit...
QuickLens - Search Screen with Google Lens hit by network compromise
Incident
First: 28.02.2026 21:18
Last: 28.02.2026 21:18
Sources 1
About this happening:
The **QuickLens - Search Screen with Google Lens** Chrome extension was **compromised** and used to **push malware** to about **7,000 users**, creating risk of **credential theft*...
QuickLens - Search Screen with Google Lens hit by network compromise
IncidentAbout this happening: The **QuickLens - Search Screen with Google Lens** Chrome extension was **compromised** and used to **push malware** to about **7,000 users**, creating risk of **credential theft*...
Chrome Password Manager use-after-free security flaw (CVE-2025-14372)
Vulnerability
First: 11.12.2025 12:15
Last: 11.12.2025 12:15
Sources 1
About this happening:
**CVE-2025-14372** is a **use-after-free** in **Chrome’s Password Manager** that Google patched in the **December 10** Chrome security update. The flaw affects a core password-han...
Chrome Password Manager use-after-free security flaw (CVE-2025-14372)
VulnerabilityAbout this happening: **CVE-2025-14372** is a **use-after-free** in **Chrome’s Password Manager** that Google patched in the **December 10** Chrome security update. The flaw affects a core password-han...
Gemini Enterprise zero-click indirect prompt injection security flaw
Vulnerability
First: 10.12.2025 14:05
Last: 10.12.2025 14:05
Sources 1
About this happening:
**Google Gemini Enterprise** and **Vertex AI Search** were patched after researchers found a **zero-click indirect prompt injection** flaw that could **exfiltrate sensitive corpor...
Gemini Enterprise zero-click indirect prompt injection security flaw
VulnerabilityAbout this happening: **Google Gemini Enterprise** and **Vertex AI Search** were patched after researchers found a **zero-click indirect prompt injection** flaw that could **exfiltrate sensitive corpor...
Google Chrome adds User Alignment Critic for Gemini agentic browsing defense
Security Tool/Service
First: 08.12.2025 20:08
Last: 08.12.2025 20:08
Sources 1
About this happening:
**Google** is adding **User Alignment Critic** to **Chrome** for upcoming **Gemini**-powered agentic browsing, strengthening defenses against **indirect prompt injection** and uns...
Google Chrome adds User Alignment Critic for Gemini agentic browsing defense
Security Tool/ServiceAbout this happening: **Google** is adding **User Alignment Critic** to **Chrome** for upcoming **Gemini**-powered agentic browsing, strengthening defenses against **indirect prompt injection** and uns...
Timeline
-
11.12.2025 09:09 2 articles · 5mo ago
Chrome security update for active 466192044 exploit
Mitigation Patch UpdateGoogle shipped security updates for Chrome to address three security flaws, including an undisclosed high-severity issue tracked as Chromium issue tracker ID 466192044 that had an exploit in the wild. Users on Windows and Apple macOS were advised to install 143.0.7499.109/.110, and users on Linux were advised to install 143.0.7499.109.
Show sources
- Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw — thehackernews.com — 11.12.2025 09:09
- Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw — thehackernews.com — 11.12.2025 09:09