Google has not announced the details of the vulnerability and the group that exploits it, as a way to allow more time for Chrome users to install updates and prevent other actors from developing a new exploitation of the same vulnerability.
The company advises users to update their browser to version (86.0.4240.183) for Windows, Mac and Linux operating systems.
Google said: Access to bug details and links is restricted until the majority of users update their browsers, and we also keep restrictions in case the error is in a third-party library on which other projects depend and has not yet been fixed.
This is the second vulnerability exploited within Chrome that Google finds during the past two weeks.
On October 20, the company released a browser security update to correct the vulnerability in Chrome’s Font View Library (FreeType) (CVE-2020-15999).
Google also revealed last week that this vulnerability was used in conjunction with a Windows operating system vulnerability named (CVE-2020-17087).
Microsoft is expected to correct this vulnerability on November 10, with the company’s next patch.