Google released a new security update for its Chrome web browser that fixes three security issues, including one that is exploited in the wild.
The security issue affects the desktop versions of Google Chrome and the Android version. Desktop users may select Menu > Help > About Google Chrome to install the security update immediately. Google says that it may take days or even weeks before updates may be installed automatically on systems running Google Chrome.
Google reveals basic information about two of the three vulnerabilities. The vulnerability that is exploited in the wild is CVE-2025-5419. It is an out of bounds read and write vulnerability in Chrome’s JavaScript engine that is rated high.
Google reveals that it mitigated the issue on May 28th already. It released a configuration change on the day that it “pushed out to Stable across all Chrome platforms”. Many systems running Chrome should have received the update on that day or the following days already.
Google confirmed that the security issue is exploited in the wild, but did not reveal additional information at the time. The scope of the attack and the attack vector are unknown because of this. Google limits access to security information, including information about patched security issues, to avoid giving malware groups and developers additional hints about the issue.
Chrome users may display the current version of the web browser by loading chrome://settings/help on desktop systems. Google displays on the page if Chrome is up to date.
The following versions should be displayed after installation of the update.
- Chrome for Windows or Mac: 137.0.7151.68 or 137.0.7151.69
- Chrome for Linux: 137.0.7151.68
- Chrome for Android: 137.0.7151.72
Android users can’t speed up the installation of the update.
Now You: do you use Chrome or have the browser installed? Feel free to leave a comment down below.