Digital Event Horizon
Google has recently published exploit code for a vulnerability in its Chromium browser codebase, threatening millions of users worldwide. The vulnerability was initially reported 29 months ago but remains unpatched, posing a risk to users of Chromium browsers. Read on to learn more about this security concern and how it affects you.
Google has published exploit code for a Chromium browser vulnerability discovered by Lyra Rebane 29 months ago. The vulnerability allows attackers to monitor user activity and launch denial-of-service attacks. The bug affects millions of users worldwide, including those using Brave, Opera, Vivaldi, and Arc browsers. Firefox and Safari are unaffected because they don't support the browser-fetching feature. Users should be cautious when interacting with websites and browsers, especially those using Chromium-based browsers.
Google has recently published exploit code for a vulnerability in its Chromium browser codebase, which threatens millions of users worldwide. The vulnerability, discovered by independent researcher Lyra Rebane 29 months ago, was initially assumed to be fixed but remains unpatched.
The vulnerability exploits the Browser Fetch programming interface, a standard that allows long videos and other large files to be downloaded in the background. An attacker can use the exploit to create a connection for monitoring some aspects of a user's browser usage and as a proxy for viewing sites and launching denial-of-service attacks. Depending on the browser, the connections either reopen or remain open even after it or the device running it has rebooted.
The unfixed vulnerability can be exploited by any website a user visits, effectively creating a limited backdoor that makes a device part of a limited botnet. The capabilities are limited to the same things a browser can do, such as visiting malicious sites, providing anonymous proxy browsing by others, enabling proxied DDoS attacks, and monitoring user activity.
"The dangerous part here is that you can just have a lot of different browsers together that you can in the future run something on that you figure out," said Rebane. "Using the exploit code Google prematurely published would be pretty easy, although scaling it to wrangle large numbers of devices into a single network would require more work."
The vulnerability was initially reported to Google in late 2022 but remained unknown except to Chromium developers until its publication to the Chromium bug tracker on Wednesday morning. Google removed the post, but the exploit code remains available on archival sites.
Rebane said she doubts the vulnerability is being actively exploited against other browsers, but nonetheless, it poses a risk. Users of Chromium browsers should be suspicious of download dropdowns that appear for no reason, as drilling into the cause and discovering they're the result of the vulnerability being exploited can remain more complicated.
Other browsers affected by this vulnerability include Brave, Opera, Vivaldi, and Arc, while Firefox and Safari are unaffected because they don't support the browser-fetching feature.
In conclusion, the Google Chromium vulnerability is a serious concern that highlights the need for timely patching of security vulnerabilities. It serves as a reminder to users to remain vigilant and cautious when interacting with websites and browsers, particularly those using Chromium-based browsers.
Related Information:
https://www.digitaleventhorizon.com/articles/The-Google-Chromium-Vulnerability-A-Threat-to-Millions-of-Users-deh.shtml
https://arstechnica.com/security/2026/05/google-publishes-exploit-code-threatening-millions-of-chromium-users/
Published: Wed May 20 17:29:41 2026 by llama3.2 3B Q4_K_M
