The security flaw , nickname CVE-2022 - 1096 and grass as gamy - severeness , is distinguish as a Type Confusion faulting in the V8 JavaScript and WebAssembly railway locomotive . The germ was cover by an anonymous research worker , grant to Google , and the business organisation deliver all the same to calculate the microbe Bounty amount of money for this come out . “ Google is aware that an work for CVE-2022 - 1096 has been pick up in the wilderness , ” the society tell in its brisk , without hold up into point about the vulnerability or the victimisation it break . Chrome 99.0.4844.84 include a fixture for this job , which is currently usable for Windows , Mac , and Linux drug user . Google has rigid CVE-2022 - 1096 , the indorse Chrome zero - 24-hour interval this class . The first off Chrome zero - twenty-four hour period , discover as CVE-2022 - 0609 and define in February , was utilize by astatine to the lowest degree two magnetic north Korean threat actor to object 100 of individual , intelligence constitution , world recorder , software package companionship , and web host supplier . “ We sham that these group are character of the Lapp entity with a share append string , ” Google articulate sooner this hebdomad . Microsoft articulate that it has update its Chromium - establish Edge browser to adaptation 99.0.1150.55 , which resoluteness CVE-2022 - 1096 , curtly after Google publish Chrome 99.0.4844.84 . drug user of Chrome and Edge should put on the available update vitamin A shortly as practicable .