CVE-2020-6428: 
Node.js vulnerability analysis and mitigation

CVE-2020-6428 is a use-after-free vulnerability discovered in the audio component of Google Chrome prior to version 80.0.3987.149. The vulnerability was reported by Man Yue Mo of GitHub Security Lab on March 2, 2020, and was patched in the stable channel update released on March 18, 2020 (Chrome Release).

The vulnerability is classified as a use-after-free issue specifically affecting the audio component in Google Chrome. It has been assigned a CVSS v3.1 base score of 8.8 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The vulnerability could be exploited through a crafted HTML page, potentially leading to heap corruption (NVD).

A successful exploitation of this vulnerability could allow a remote attacker to potentially execute arbitrary code with the privileges of the process or cause a Denial of Service condition. The vulnerability requires user interaction, specifically opening a specially crafted HTML file (Gentoo).

The vulnerability has been fixed in Google Chrome version 80.0.3987.149. Users and administrators are advised to upgrade to this version or later. Multiple Linux distributions have also released security updates to address this vulnerability, including Debian, Fedora, and Gentoo (Debian, Fedora).