The Indian Computer Emergency Response Team (CERT-In) has warned users about multiple vulnerabilities in Google Chrome that could allow remote attackers to execute arbitrary code and bypass security restrictions on targeted systems.
These vulnerabilities exist in Google Chrome due to use after free in FedCM, SwiftShader, ANGLE, Blink, Sign-in Flow, Chrome OS Shell, along with Heap buffer overflow in downloads, insufficient validation of untrusted input in intents, insufficient policy enforcement in Cookies and inappropriate implementation in extensions API.
As per the advisory, Google Chrome users running versions prior to Google Chrome 104.0.5112.101 are at the risk. Users who are still running an older version of Google Chrome to update their browser version.
Earlier this week, CERT-In issued an advisory for Apple users, warning them against a vulnerability existing in iOS and iPadOS version prior to 15.6.1, and macOS Monterey version prior to 12.5.1. It said that it could allow a remote attacker to exploit vulnerabilities by enticing a victim to open a specially-crafted file.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
