CERT-IN warns Google Chrome users of critical vulnerabilities. Update your browser immediately to avoid potential cyberattacks!

The Indian Computer Emergency Response Team (CERT-IN) has issued a critical warning to Google Chrome users, highlighting several newly discovered vulnerabilities that pose a significant risk. These vulnerabilities, identified as CIVN-2024-0282, could potentially be exploited by remote attackers to gain unauthorized access to users’ systems. The affected Chrome versions include those earlier than 128.0.6613.119/.120 for Windows and macOS, and versions prior to 128.0.6613.119 for Linux.

Understanding the Vulnerabilities

The identified issues, labeled under the CVE identifiers CVE-2024-8362 and CVE-2024-7970, are attributed to “use after free” bugs in the Web Audio component of Chrome. These flaws offer cybercriminals an opportunity to infiltrate systems, potentially enabling them to execute arbitrary commands without user consent. Such unauthorized access could lead to attackers gaining full control of the affected machine, allowing them to steal confidential data, install malware, or even use the system to carry out further cyberattacks.

The Severity of the Threat

CERT-IN has emphasized the severity of these vulnerabilities, noting that attackers could exploit them by tricking users into visiting maliciously crafted websites. This type of attack, known as drive-by downloading, happens when a user is directed to a compromised webpage, with no further user interaction required for the system to be compromised.

Protecting Yourself

Users are strongly advised to exercise caution regarding the websites they visit and the links they click, particularly those from unfamiliar or suspicious sources. The most effective way to mitigate the risk is to update Google Chrome to the latest version immediately.

The CERT-IN warning underscores the critical importance of staying vigilant in the digital landscape. The vulnerabilities discovered in Google Chrome highlight the ever-present threat of cyberattacks. By promptly updating your browser and exercising caution online, you can significantly reduce your risk of falling victim to these threats. Remember, cybersecurity is a shared responsibility, and staying informed is the first step towards protecting yourself and your data.

About the author

View All Posts

Sovan Mandal

Sovan, with a Journalism degree from the University of Calcutta and 10 years of experience, ensures high-quality tech content. His editorial precision has contributed to the publication's acclaimed standards and consistent media mentions for quality reporting. Sovan’s dedication and attention to detail have greatly contributed to the consistency and excellence of our content, reinforcing our commitment to delivering the best to our readers.