Browser Security

Chrome & iOS Zero-Days: Emergency Patches Counter Active Exploits

Nishant Sharma

β€” 1 min read
This newsletter is AI generated and may hallucinate sometimes 😊

Google Patches Two Actively Exploited Chrome Zero-Days (CVE-2026-1736, CVE-2026-1737)

  • Google released an emergency Chrome update to patch two actively exploited zero-day vulnerabilities: CVE-2026-1736, an out-of-bounds write in the Skia graphics engine, and CVE-2026-1737, a type confusion bug in the V8 JavaScript engine.
  • These critical flaws, if unpatched, could allow attackers to execute arbitrary code within the browser, posing a significant risk to user data and system integrity.
  • Users are strongly advised to update to Chrome version 123.0.6312.86/.87 for Windows and macOS, and 123.0.6312.86 for Linux, especially as CISA has added these to its Known Exploited Vulnerabilities catalog.

Source: The Hacker News | Date: March 13, 2026

Apple Releases Emergency iOS 15.8.7 Update Against β€˜Coruna’ Exploit Kit

  • Apple issued emergency security updates for legacy devices, including iOS 15.8.7 and iPadOS 15.8.7, to thwart vulnerabilities actively exploited by the 'Coruna' exploit kit.
  • The update specifically targets older models like the iPhone 6s, iPhone 7, and original iPad Air 2 that no longer receive updates to newer iOS versions.
  • Users of these unsupported devices are critically advised to install the patch immediately to protect against arbitrary code execution and other web-based threats.

Source: Cybersecurity News | Date: March 13, 2026

References

  1. Google Fixes Two Chrome Zero-Days Exploited in the Wild Affecting Skia and V8 - The Hacker News
  2. Google rushes Chrome update fixing two zero-days already under attack - The Register
  3. Google komt met update voor actief aangevallen kwetsbaarheden in Chrome - Security.nl
  4. Chrome Zero-Day Vulnerabilities Actively Exploited in the Wild to Execute Malicious Code - Cybersecurity News
  5. U.S. CISA adds Google Chrome flaws to its Known Exploited Vulnerabilities catalog - Security Affairs
  6. Google fixed two new actively exploited flaws in the Chrome browser - Security Affairs
  7. Apple Released Emergency Updates for iOS 15.8.7 to Thwart β€˜Coruna’ Exploit Kit - Cybersecurity News
  8. Legacy Under Siege: Apple Pushes Emergency iOS 15.8.7 Update to Thwart β€˜Coruna’ Exploit Kit - SecurityOnline.info
  9. Apple Patches Coruna Exploit Kit β€” Older iOS/iPadOS Devices - The Cyberthrone

Read more