Google has published exploit code for a critical unfixed vulnerability in Chromium that affects millions of Chrome, Edge, and other Chromium-based browser users. The exploit allows attackers to create persistent connections that can monitor user activity, enable proxy browsing, and launch DDoS attacks, effectively creating a botnet. Despite being reported 29 months ago, the vulnerability remains unpatched, posing significant risks to user security.
Background
Chromium is the open-source browser project that forms the foundation for Google Chrome, Microsoft Edge, and several other popular web browsers. Browser security vulnerabilities in Chromium can have widespread implications due to its massive user base across multiple browsers.
- Source
- Ars Technica
- Published
- May 21, 2026 at 03:10 AM
- Score
- 9.0 / 10