Google Patches In-the-Wild Exploit for Type Confusion Flaw in Chrome (CVE-2020-6418)

Google released 80.0.3987.122, a new Google Chrome stable channel update for Windows, Mac and Linux on February 24. This update contains a fix for CVE-2020-6418, a type confusion vulnerability in the V8 engine for Google Chrome. According to Google, there are reports that this flaw was exploited in the wild. It was discovered and reported by a security engineer for Google’s Threat Analysis Group, Clément Lecigne.

No additional information about this vulnerability is currently public. This is likely to ensure users are able to apply the patches, while also ensuring attackers aren’t able to utilize this vulnerability in subsequent attacks.

For details on Tenable product coverage, please visit our blog.