Researchers from Kaspersky, who first discovered the vulnerabilities, said that one of them was actively being exploited to install malware on user machines. That’s a memory corruption issue that could allow for unintended consequences like system crashing or code execution.Īccording to the National Cyber Security webpage, the vulnerabilities are CVE-2019-13720 and CVE-2019-13721. The two high-severity zero-days are classed as “user-after-free” vulnerabilities. Because of the seriousness of the vulnerabilities, it’s highly recommended that you update as soon as possible.
Google has issued an update to its Chrome browser to patch two serious zero-day vulnerabilities - one of which is currently being exploited in the wild.