Summarize

Simplifying... Inshort

Heads up, Chrome users!
CERT-In has found serious security flaws in versions of Google Chrome before 129.0.6668.70/.71, affecting all platforms - Windows, macOS, and Linux.
These vulnerabilities could let hackers take control of your system, so it's crucial to update your browser to the latest version to stay safe.

Was a long read? Making it simpler...

Next Article

Chrome users must update to patch critical security holes

Update your browser! Critical vulnerabilities discovered in Google Chrome

By Akash Pandey

Sep 27, 2024

03:19 pm

What's the story

The Indian government has issued a high-risk warning to Google Chrome users, due to critical vulnerabilities detected in the browser. These flaws could potentially expose their systems to cyberattacks. The alert was released by the Indian Computer Emergency Response Team (CERT-In), which identified multiple security vulnerabilities in Chrome. If exploited, these weaknesses could enable remote attackers to execute malicious code or cause system crashes.

Severity classification

Chrome vulnerabilities categorized as high-severity

CERT-In's recent Vulnerability Note - CIVN-2024-0311, issued on September 26, details a series of vulnerabilities in Chrome. These issues have been classified as high-severity due to their potential impact on users' systems. The vulnerabilities are attributed to defects in Chrome's JavaScript engine (V8) and improper implementations, resulting in significant security risks.

Exploitation risks

Hackers can exploit these vulnerabilities for malicious activities

Hackers could potentially exploit these vulnerabilities to run arbitrary code on the target system. This means a cyberattacker could gain control over the affected system, steal confidential information, or install harmful software. In extreme cases, an attacker could cause the Chrome browser to crash, paving the way for further exploitation. The identified flaws include Type Confusion in V8 and Use-after-free vulnerabilities as well as inappropriate implementation issues.

Affected versions

CERT-In identifies affected Chrome versions and platforms

CERT-In has confirmed that these vulnerabilities affect all platforms, including Windows, macOS, and Linux. The vulnerabilities impact Chrome versions prior to 129.0.6668.70/.71 for Windows and Mac, and versions before 129.0.6668.70 for Linux. Google has already rolled out an update that addresses these vulnerabilities in its Chrome browser. To reduce the risks associated with these vulnerabilities, both CERT-In and Google are urging users to update their Chrome browser to the latest version.