Google patches two Chrome vulnerabilities exploited in the wild (CVE-2020-16013 and CVE-2020-16017)

Google patches two Chrome vulnerabilities exploited in the wild

Google has released Chrome 86.0.4240.198 security update for Windows, Mac and Linux. The update also addresses two High risk zero-day vulnerabilities that are being exploited in the wild.

An attacker could exploit these vulnerabilities to take control of impacted systems.

Google warned that exploits against each of the vulnerabilities (CVE-2020-16013 and CVE-2020-16017) exist in the wild.

The Google Chrome update patches the following vulnerabilities:

  • CVE-2020-16013: Inappropriate implementation in V8.
  • CVE-2020-16017: Use after free in site isolation.

Readers may also remember Google also patched another zero-day Chrome vulnerability CVE-2020-16009 earlier this month previously exploited in the wild.

To add, Google released Chrome 86 (86.0.4240.198) for Android.

Related Articles