The Indian Computer Emergency Response Team (CERT-In) has issued a high-severity warning citing critical vulnerabilities for Google Chrome users. The government agency warns of critical vulnerabilities in the popular web browser, potentially allowing hackers to remotely access and compromise user systems. CERT-In pointed out that Google Chrome versions older than 130.0.6723.116 on Linux, and 130.0.6723.116/.117 on Windows and Mac, are vulnerable to security issues.
The identified vulnerabilities have been assigned CVE name CVE-2024-10826 and CVE-2024-10827.
Google Chrome WARNING! Overview
Two critical vulnerabilities in Google Chrome, caused by use-after-free errors, can be exploited by remote attackers to execute arbitrary code and trigger denial of service conditions on the targeted system. CERT-In alerts that this vulnerability specifically targets all organizations and individuals who use Google Chrome for Desktop.
ALSO READ: Telangana Govt Website HACKED! How Hackers Are Fooling Google News Algorithm?
Why You Shouldn’t Ignore The Latest Govt Alert?
Potential risks for Google Chrome users include unauthorized data access, browser crashes, remote hacking, and service disruptions, said CERT-In. Exposure to cyber threats may result in data theft, malware spread, and system failures.
Solution
To ensure security, update Google Chrome to version 130.0.6723.116 on Linux, and 130.0.6723.116/.117 on Windows or Mac, said CERT-In.
Description
Google Chrome is a widely-used web browser that enables users to explore the internet on desktop devices running Windows, macOS, or Linux. Google Chrome’s “Serial” and “Family Experiences” components contain two use-after-free vulnerabilities, exploitable by a remote attacker by persuading a victim to visit a specially crafted webpage.
“Successful exploitation of these vulnerabilities could allow the attacker to execute arbitrary code, obtain unauthorized access to sensitive information or perform Denial of Service (DoS) condition on the targeted system,” said CERT-In.