Detections
Analytics
CVE-2020-6418
high
Description
Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
From the Tenable Blog
CVE-2020-6418: Google Chrome Type Confusion Vulnerability Exploited in the Wild
Published: 2020-02-24
Google is aware of reports that a type confusion flaw in Google Chrome has been exploited in the wild. Background On February 24, Google released a new stable channel update for Google Chrome for Desktop to address several vulnerabilities, including one that has been reportedly exploited in the wild.
References
https://www.trendmicro.com/en_us/research/24/l/earth-minotaur.html
https://thehackernews.com/2024/12/hackers-target-uyghurs-and-tibetans.html
https://www.tenable.com/cyber-exposure/2020-threat-landscape-retrospective
https://www.tenable.com/blog/how-covid-19-response-is-expanding-the-cyberattack-surface
https://www.debian.org/security/2020/dsa-4638
https://security.gentoo.org/glsa/202003-08
https://chromereleases.googleblog.com/2020/02/stable-channel-update-for-desktop_24.html