Google has launched an pressing safety replace for the Chrome browser to handle a high-severity vulnerability within the WebView tag part that would permit attackers to bypass vital safety restrictions.
Google rolled out Chrome model 143.0.7499.192/.193 for Home windows and Mac, and 143.0.7499.192 for Linux, by its Secure channel, to handle CVE-2026-0628.
The replace is being rolled out to customers steadily over the approaching days and weeks. The safety flaw, tracked as CVE-2026-0628, stems from inadequate coverage enforcement within the WebView tag part.
CVE IDSeverityComponentDescriptionCVE-2026-0628HighWebView tagInsufficient coverage enforcement within the WebView tag.
WebView Challenge Exposes Apps to Assaults
WebView is a vital Chrome part that allows purposes to show internet content material inside their interfaces with out launching a full browser.
A high-severity score means attackers might bypass safety controls, resulting in unauthorized entry, information leaks, or the execution of malicious code in apps that use WebView.
In step with accountable disclosure practices, Google has briefly restricted entry to detailed bug info till most customers have put in the safety patch.
This method prevents malicious actors from exploiting the vulnerability whereas customers replace their programs.
Google acknowledged contributions from exterior safety researchers and emphasised its dedication to collaborative safety efforts.
Google employs a number of detection methodologies, together with AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Management Move Integrity, libFuzzer, and AFL, to establish vulnerabilities throughout growth cycles.
Customers ought to instantly replace Chrome to the newest model by navigating to Settings > Assist > About Google Chrome. The browser will mechanically examine for and set up accessible updates.
Organizations utilizing Chrome in enterprise environments ought to prioritize deploying this safety patch throughout their infrastructure.
Google continues to encourage safety researchers to report vulnerabilities by its bug bounty program, reinforcing the significance of collaborative safety in defending customers worldwide.
Observe us on Google Information, LinkedIn, and X for day by day cybersecurity updates. Contact us to characteristic your tales.
.webp?ssl=1 "Cyber Threats Exploit 2026 World Cup with Scams and Phishing")
