A zero-day vulnerability (CVE-2023-5217) has been discovered in Google Chrome and Mozilla Firefox browsers that allows hackers to target computers running Windows, macOS and Linux operating systems.
Hackers are already actively using the discovered vulnerability. Google and Mozilla recommend updating browsers as soon as possible to avoid potential problems.
The vulnerability was found in the popular WebM multimedia encoding system, which creates an opportunity for attack in a number of applications associated with hardware from NVIDIA, AMD and Logitech, including browsers, Skype and VLC.
The VP8 WebM format is used by many applications, so according to Mozilla, this could become a serious problem in the future. The detected vulnerability, according to PCWorld's analysis, only activates when media files are encoded, not when they are decoded.