The Indian Computer Emergency Response Team (CERT-In) under the IT ministry has issued a high severity warning for Google Chrome browser users. The warning is for the users who are using browser’s version prior to 99.0.4844.74. As per the warning, multiple vulnerabilities have been reported in Google Chrome which could allow a remote attacker to execute arbitrary code, bypass security restrictions or cause denial of service conditions on the targeted system.
The advisory further reveals that “these vulnerabilities exist in Google Chrome due to use after free in Blink Layout, extensions, safe browsing, splitscreen, ANGLE, new tab page, browser UI and heap buffer overflow in GPU.” Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code, bypass security restrictions or cause denial of service conditions on the targeted system.
To avoid any swindling, the CERT-In wants Google Chrome users to update to version 99.0.4844.74. The mentioned version was rolled out by the tech giant earlier this week and it contains a number of fixes and improvements.
This week, the CERT-In also mentioned that multiple vulnerabilities have been reported in Microsoft Edge browser which could allow a remote attacker to compromise targeted system. An attacker can exploit these vulnerabilities by sending a specially crafted request.
As per a report by StatCounter, Edge is now used on 9.54% of desktops worldwide, just behind Apple’s Safari with 9.84% market share. The data also reveals that Google Chrome still holds the largest market share with 65.38% users. Edge has seen significant growth since the launch of the new Windows OS.