![](https://github.blog/wp-content/uploads/2023/04/1200.630-Global@2x-1.png?resize=400%2C212)
Getting RCE in Chrome with incomplete object initialization in the Maglev compiler
In this post, I’ll exploit CVE-2023-4069, a type confusion in Chrome that allows remote code execution (RCE) in the renderer sandbox of Chrome by a single visit to a malicious site.