New Chrome Zero Day

Google hasn’t released official details on the exploit but in a nutshell memory corruption vulnerabilities were found in key components of the Chrome browser which could potentially lead to code execution on the user’s machine if a malicious page is visited.
Your browser is VULNERABLE
Excellent: your browser is NOT vulnerable

Check if you are vulnerable to CVE-2019-13720 & CVE-2019-13721

If the above is showing you are vulnerable you should probably update your Chrome browser to the latest version before reading the rest of this article [instructions below].

Either way feel free to take advantage of AppCheck’s free Vulnerability Scan to test for other vulnerabilities in your networks and infrastructure by signing up at the bottom of the article.

 

New Zero Day Vulnerability Details – CVE-2019-13720 & CVE-2019-13721

Google have stated they are ‘aware of reports that an exploit for CVE-2019-13720 exists in the wild’ but so far have reported little else announcing ‘access to bug details and links may be kept restricted until a majority of users are updated with a fix.’ Which is fair enough.

Google hasn’t released official details on the exploit but in a nutshell memory corruption vulnerabilities were found in key components of the Chrome browser which could potentially lead to code execution on the user’s machine if a malicious page is visited.

For more information take a look here:
https://thehackernews.com/2019/11/chrome-zero-day-update.html

 

How do I fix this vulnerability?

Google has released Chrome version 78.0.3904.87 for Windows, Mac and Linux operating systems. To update head to your Chrome settings and click ‘About Google Chrome.’ This should manually trigger the update.

 

AppCheck Free Vulnerability Assessment

If you would like a free scan to test for vulnerabilities in your network and infrastructure then please sign-up below and a member of the AppCheck team will be in contact with you.

Get started with Appcheck

No software to download or install.

Contact us or call us 0113 887 8380

About Appcheck

AppCheck is a software security vendor based in the UK, offering a leading security scanning platform that automates the discovery of security flaws within organisations websites, applications, network and cloud infrastructure. AppCheck are authorized by te Common Vulnerabilities and Exposures (CVE) Program aas a CVE Numbering Authority (CNA)

No software to download or install.
Contact us or call us 0113 887 8380

Start your free trial

Your details
IP Addresses
URLs

Get in touch