The impact of this issue announcement is high – critical. Please act accordingly to rectify the issue, as stated below.
Google Chrome prior to version 84.0.4147.89
What you need to know:
A vulnerability was found in Google Chrome (Web Browser). It has been declared as critical because it is mainly affecting an unknown function of the component Background Fetch. The manipulation as part of a HTML Page leads to a memory corruption vulnerability (Heap-based). The CWE definition for the vulnerability is CWE-122.
The weakness was presented 22/07/2020. This vulnerability is known as CVE-2020-6510 since 08/01/2020.
Actions to be taken:
Make sure that Google Chrome was updated to the latest version, 84.0.4147.89, which contains several fixes and improvements.
What is the impact of not doing the actions?
This vulnerability will allow a remote attacker to potentially exploit heap corruption via a crafted HTML page.