Highlight
- (CERT-In) issues a security warning to these Chrome users over the discovered multiple critical vulnerabilities in Google Chrome.
- Affected Chrome version:
- Google Chrome versions prior to 126.0.6478.114/115 for Windows and Mac and
- Google Chrome versions prior to 126.0.6478.114 for Linux.
The government agency, the Indian Computer Emergency Response Team (CERT-In) issues a security warning to these Chrome users over the discovered multiple critical vulnerabilities in Google Chrome. CERT-In marks it as a ‘high’ severity rating for Chrome users on desktop.
Chrome versions that are affected
- Google Chrome versions prior to 126.0.6478.114/115 for Windows and Mac and
- Google Chrome versions prior to 126.0.6478.114 for Linux.
These are the Chrome versions that are affected according to the CERT-IN advisory. CERT-IN urges users who use this version of Chrome to update their Chrome to the latest version as soon as possible to avoid potential security breaches by attackers.
CERT-IN advisory: How to be safe
This is not the first time CERT-IN has warned about security breaches for Chrome users. Just this past few months CERT-IN issued similar warnings to specific Chrome version users for security and vulnerable threats on Chrome Web Browser.
This advisory was issued on June 19 CERT-IN stated that vulnerabilities exist in Google Chrome due to Type Confusion in V8, Inappropriate implementation in WebAssembly, Out-of-bounds memory access in Dawn and Use after free in Dawn. Vulnerabilities can be exploited by remote attackers by reaching out to users to visit web pages if this is successful the allow a remote attacker to execute arbitrary code on the targeted system.
To be safe we need to use the latest version and update Chrome to the latest version as soon as available and avoid visiting unwanted websites and untrusted websites to be safe from this vulnerable issue.
Also Read: Google Gemini App finally available on Andriod devices in India
CERT-IN advisory for Google Pixels Users
CERT-IN also issued significant vulnerabilities in Google Pixels smartphones as well. This happens from the improper input validation within various components on these smartphones such as Exynos RIL, Modem, LWIS, ACPM, Fingerprint Sensor, Telephony, Audio, WLAN HOST, Trusty OS, Pixel Firmware, LDFW, Trusty/TEE, Goodix, Mali, avcp, confirmationui, CPIF, v4l2, and GsmSs.
The affected smartphones are Pixel 5a with 5G, Pixel 6a, Pixel 6, Pixel 6 Pro, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel 8, Pixel 8 Pro, Pixel 8a and Pixel Fold.
Conclusion
As I mentioned this is not the first time that the cyber watchdog of the government the CERT-In issued a warning about security threats like these. We need to update and use the original and latest version of software to avoid these vulnerable security threats without waiting for these warnings.
