Vulnerability exposes Chrome-based browsers to cyberattacks

A security researcher reveals a vulnerability that can be exploited in the V8 JavaScript engine. Google has yet to release a patch to the public  

Photo: Bigstock

An Indian security researcher published a recently-discovered proof-of-concept exploit code that influences Google Chrome, Microsoft Edge and other Chromium-based browsers such as Opera and Brave. The researcher, Rajvardhan Agarwal, said that the exploit code is for a vulnerability in Chromium that was used during last week's Pwn2Own hacking contest. 

Although details about the exact nature of the exploit have yet to be made public, Agarwal told The Record that he noticed the vulnerability by looking at the source code in the V8 JavaScript engine, a component of the Chromium open-source browser project.

However, although Chromium developers patched the vulnerability in V8 last week, the patch has yet to be integrated into official versions of Chromium-based browsers such as Chrome, Edge and others, which are still exposed to cyberattacks.