By Nethra Sailesh
Indian Computer Emergency Response Team (CERT-In) has issued a high-risk alert to users of Google Chrome due to security vulnerabilities found in older versions of the browser.
Earlier this week, the CERT-In which comes under the Ministry of Electronics and Information Technology issued a warning after they found vulnerabilities in older versions of ChromeOS on Android, MAC, and Linux which could involve remote attackers breaching security access and accessing sensitive information on devices. According to their official website, some of the vulnerabilities include inappropriate implementation in navigation, Extensions and Payments, a stack buffer overflow in tracing which is a software coding error, out of bounds read in metrics, and memory access in V8. Additionally, they also stated that hackers can use these vulnerabilities to trigger “spoofing, cross-site scripting, conduct remote code execution, bypass security controls, and gain access to sensitive information.”
Additionally, to prevent this from taking place they also said that both individual and organizational users should ensure that their Chrome is updated until the latest available version.
The software versions prone to external attacks include versions older than 132.0.6834.110/111 for Windows and Mac and 132.0.6834.110 for Linux.
On Tuesday, the Google Chrome team addressed the issue raised and informed users across all three mobile operating systems that a new update is imminent in the next few days. They have also created a Stable Channel update for Chrome for desktop users. Furthermore, the team also added, “We would also like to thank all security researchers who worked with us during the development cycle to prevent security bugs from ever reaching the stable channel.”