Skip to main content

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. High-Severity Vulnerability in Google Chrome (CVE-2020-6418)
Alerts

High-Severity Vulnerability in Google Chrome (CVE-2020-6418)

26 February 2020

Google has released Chrome version 80.0.3987.122 for Windows, Mac and Linux to address a high-severity vulnerability (CVE-2020-6418). There are reports that an exploit for CVE-2020-6418 exists in the wild.

This vulnerability exists due to a type confusion in Chrome's V8 JavaScript Engine. Successful exploitation of this vulnerability could corrupt memory and allow an attacker to execute arbitrary code.

Users of affected products are advised to install the latest security updates immediately. All users are encouraged to enable the automatic update function to ensure prompt software updates are performed.

More information is available here:
https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop_24.html
https://www.zdnet.com/article/google-patches-chrome-zero-day-under-active-attacks/
https://www.tenable.com/blog/cve-2020-6418-google-chrome-type-confusion-vulnerability-exploited-in-the-wild

Back to top