(http://i.postimg.cc/P5gzZrms/Microsoft-launches-emergency-security-updates-to-fix-codecs-930x620.jpg)
If your browser is prompting you to restart now may be a good time to do so. Microsoft and Google have released an urgent fix for a browser vulnerability in their Chromium-based browsers which can be exploited simply by visiting a web page or clicking a link.
According to the BSI (http://www.bsi.bund.de/SharedDocs/Warnmeldungen/DE/TW/2021/08/warnmeldung_tw-t21-0153_update_1.html):
Several vulnerabilities in Google Chrome and Microsoft Chrome-based Edge have been disclosed. An attacker can exploit this with unknown effects. To exploit it, it is sufficient to call up a maliciously designed website or to click a link to such a page.
The vulnerabilities have been judged as Risk level 4, meaning they are high impact and easy to exploit.
Microsoft has updated their Edge browser to version 92.0.902.78 and list 6 vulnerabilities fixed by the update:
CVE-2021-30604 (http://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-30604),CVE-2021-30603 (http://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-30603), CVE-2021-30602 (http://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-30602),CVE-2021-30601 (http://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-30601), CVE-2021-30599 (http://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-30599), CVE-2021-30598 (http://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-30598)
Unfortunately, more details regarding the exploits are not available yet.
The Chrome browser is affected by the same issues – simply restarting your browser should be sufficient to install the updates.
Release notes for Microsoft Edge Stable Channel can be found here (http://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnote-stable-channel).
source (http://mspoweruser.com/microsoft-release-urgent-security-update-for-edge-for-risk-level-4-drive-by-exploit/)