Google publishes exploit code threatening millions of Chromium users
Summary
Ars Technica reports that Google published exploit code for a long-unpatched Chromium vulnerability that can be triggered via the Browser Fetch API, potentially turning affected devices into a limited botnet. The flaw affects Chromium-based browsers like Chrome and Edge, with Firefox and Safari reportedly unaffected due to missing support for the feature. The vulnerability has remained unfixed for 29 months, raising widespread risk as exploit code is now public.