Google \u0111\u00e3 ph\u00e1t \u0111i th\u00f4ng b\u00e1o cho bi\u1ebft tr\u00ecnh duy\u1ec7t Chrome b\u1ecb t\u1ea5n c\u00f4ng v\u00e0 ng\u01b0\u1eddi d\u00f9ng tr\u00ean to\u00e0n th\u1ebf gi\u1edbi c\u00f3 nguy c\u01a1 b\u1ecb hack<\/figcaption><\/figure>\nM\u1edbi \u0111\u00e2y, Google \u0111\u00e3 ph\u00e1t \u0111i th\u00f4ng b\u00e1o cho bi\u1ebft tr\u00ecnh duy\u1ec7t Chrome b\u1ecb t\u1ea5n c\u00f4ng v\u00e0 3,2 t\u1ef7 ng\u01b0\u1eddi d\u00f9ng tr\u00ean to\u00e0n th\u1ebf gi\u1edbi c\u00f3 nguy c\u01a1 b\u1ecb hack.<\/p>\n
C\u1ee5 th\u1ec3, tr\u00ean trang blog c\u00f4ng ty, Google cho bi\u1ebft \u0111\u00e3 ph\u00e1t hi\u1ec7n v\u1ec1 m\u1ed9t cu\u1ed9c t\u1ea5n c\u00f4ng khai th\u00e1c l\u1ed7 h\u1ed5ng zero-day c\u00f3 m\u00e3 \u0111\u1ecbnh danh l\u00e0 CVE-2022-1364 di\u1ec5n ra t\u00edch c\u1ef1c.<\/p>\n
CVE-2022-1364 l\u00e0 l\u1ed7 h\u1ed5ng Type Confusion trong c\u00f4ng c\u1ee5 V8 JavaScript c\u1ee7a Chrome, \u0111\u01b0\u1ee3c \u0111\u00e1nh gi\u00e1 l\u00e0 c\u00f3 m\u1ee9c \u0111\u1ed9 nghi\u00eam tr\u1ecdng cao. L\u1ed7 h\u1ed5ng n\u00e0y \u0111\u01b0\u1ee3c \u0111\u00e1nh gi\u00e1 l\u00e0 hi\u1ebfm g\u1eb7p v\u00e0 cho ph\u00e9p k\u1ebb t\u1ea5n c\u00f4ng th\u1ef1c thi m\u00e3 \u0111\u1ed9c.<\/p>\n
L\u1ed7 h\u1ed5ng CVE-2022-1364 \u0111\u01b0\u1ee3c ph\u00e1t hi\u1ec7n v\u00e0o ng\u00e0y 13\/4\/2022 b\u1edfi Cl\u00e9ment Lecigne thu\u1ed9c nh\u00f3m Ph\u00e2n t\u00edch m\u1ed1i \u0111e d\u1ecda c\u1ee7a Google . \u0110\u00e2y l\u00e0 l\u1ed7i th\u1ee9 hai li\u00ean quan \u0111\u1ebfn Type Confusion trong V8 v\u00e0 c\u0169ng l\u00e0 l\u1ed7 h\u1ed5ng zero-day th\u1ee9 ba \u0111\u01b0\u1ee3c Google ph\u00e1t hi\u1ec7n trong n\u0103m 2022, tr\u01b0\u1edbc \u0111\u00f3 l\u00e0 CVE-2022-0609 v\u00e0 CVE-2022-1096.<\/p>\n
Hi\u1ec7n, Google v\u1eabn gi\u1eef k\u00edn th\u00f4ng tin chi ti\u1ebft v\u1ec1 l\u1ed7 h\u1ed5ng c\u0169ng nh\u01b0 v\u1ee5 hack, ch\u1ec9 ti\u1ebft l\u1ed9 m\u1ee9c \u0111\u1ed9 \u0111e d\u1ecda \u1edf m\u1ee9c cao.<\/p>\n