Critical Zero-Day Vulnerability in Popular VPN Service Allows Remote Code Execution
The vulnerability, CVE-2023-3420, was patched in the V8 engine in June 2023. However, the WebView component within WeChat was not updated, exposing millions of users to potential attacks.