Google has released Chrome version 86.0.4240.198 for Windows, Mac, and Linux. This version addresses CVE-2020-16013 and CVE-2020-16017. An attacker could exploit one of these vulnerabilities to take control of an affected system. These vulnerabilities have been detected in exploits in the wild.
Therefore Bhutan Computer Incident Response Team recommends users and administrators to review the following resources and apply the necessary updates.
- Google Chrome Release
- Multi-State Information Sharing and Analysis Center (MS-ISAC) Advisory 2020-154