A serious warning has been released by the Computer Emergency Response Team (CERT-In) of the Indian government about many high-risk vulnerabilities found in Google Chrome. These flaws, known as CVE-2024-1283 and CVE-2024-1284, represent a serious risk to user security as they might provide remote attackers the ability to run arbitrary code and steal private data.
Recognizing the Hazards:
“Use after free in Mojo” and “Heap buffer overflow in Skia,” the two vulnerabilities linked to Google Chrome, may be taken advantage of remotely by sending carefully constructed requests. This kind of exploitation may result in unapproved access to personal information kept on the target system as well as denial of service (DoS) attacks.
Affected Users and Safety Procedures:
Google Chrome users using versions 122.0.6167.160/161 and earlier on Windows, as well as versions 122.0.6167.160 and earlier on Mac and Linux, are vulnerable. Users are advised to immediately update to the most recent version of Google Chrome on their browsers in order to lessen this threat. Through the stable channel update, Google has made security updates available, guaranteeing improved defense against possible attacks.
Additional Concerns:
CERT-In previously informed consumers about vulnerabilities found in Android operating systems in a related development. These vulnerabilities, which impact versions 11 through 14, affect a number of different components, including the system, chipsets from Qualcomm, Unisoc, and MediaTek, as well as the framework. It is recommended that users exercise caution and install all required security updates to protect their devices from any online attacks.
It is critical to prioritize cybersecurity in the linked digital ecosystem of today. The disclosure of serious vulnerabilities in commonly used software, such as Google Chrome, highlights the need of prompt upgrades and proactive actions in safeguarding sensitive and personal data against hostile exploitation. Users may reduce risks and guarantee a safer online experience by remaining educated and putting suggested security procedures into practice.
