Google issued a patch for CVE-2020-6418 that is currently being exploited in the wild.
The vulnerability is a confusion vulnerability in V8, Google Chrome’s open-source JavaScript and WebAssembly engine and rated as a “high” threat by Google.
“Google is aware of reports that an exploit for CVE-2020-6418 exists in the wild,” Google stated.
Tenable researchers noted that this could mean the vulnerability was exploited as a zero day.
At this time the company is not releasing any further details on the bug, but the company noted there is a fix available and can be applied by updating to Chrome version 80.0.3987.122 for Windows, Mac and Linux.