The Indian Computer Emergency Response Team has found multiple vulnerabilities in Google Chrome and Microsoft Edge and has asked users to update the browsers. It has listed the severity rating of the vulnerabilities as 'High'.
CERT-In said that the Microsoft Edge vulnerabilities "could be exploited by a remote attacker to execute arbitrary code or cause a denial-of-service condition on the targeted system".
CERT-in has issued a vulnerability note every month of this year for Google Chrome, Microsoft Edge.
“Multiple vulnerabilities have been reported in Microsoft Edge/Google Chrome which could be exploited by a remote attacker to execute arbitrary code or cause a denial-of-service condition on the targeted system,” CERT-in said.
In simple terms, a bad actor can exploit these vulnerabilities to gain access to a user's device, running malicious code or denying them access, similar to a ransomware attack.
The warning has been issued for Microsoft Edge versions older than 113.0.1774.50, Google Chrome versions older 113.0.5672.126 for Linux/macOS and 113.0.5672.126/.127 for Windows. According to Statista, Chrome had about 86.32 percent of the browser market share in India as of December 2022.
In Microsoft Edge, the vulnerabilities were found in different modules of Edge, like the Autofill interface, Guest View, Navigation, and Developer Tools. Hackers, according to CERT-in could take advantage of these problems by tricking you into visiting a specially-made website or opening a specific file.
In Google Chrome, vulnerabilities were found in several aspects of the codebase as well as key elements of user interface. By sending carefully crafted requests to your computer, they could exploit these vulnerabilities and cause harm.
CERT-In recommends updating both browsers to avoid any privacy breach concerns.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.