Computer Emergency Response Team (CERT-in) has issued a high priority alert for the Google Chrome web browser as several serious security vulnerabilities have been identified in some versions of the browser.
According to the report, if exploited by a hacker, these vulnerabilities could execute arbitrary code, cause denial of service (DoS) conditions and obtain sensitive information and are considered likely.
The impact of these vulnerabilities is serious as hackers can gain access to sensitive data stored on your system, such as: B. Registration data and financial information.
Affected versions:
- Google Chrome versions prior to 123.0.6312.122/.123 for Windows
- Google Chrome versions prior to 123.0.6312.122/.123/.124 for Mac
- Google Chrome versions prior to 123.0.6312.122 for Linux
Vulnerabilities found in Google Chrome
- CVE-2024-3515
- CVE-2024-3516
- CVE-2024-3157
Why does Chrome have these vulnerabilities?
These errors occur in Google Chrome for a variety of reasons, including out-of-bounds writes, heap buffer overflows in Angular, and loose usage in Dawn.
A remote attacker can exploit these vulnerabilities by sending a specially crafted request to the target system. Additionally, successful exploitation of these vulnerabilities could allow remote attackers to cause a denial of service (DoS) condition and execute arbitrary code on a targeted computer.
Actions for users:
CERT-In recommended that Chrome users immediately install security updates that have already begun.
How to update Google Chrome:
Updating Google Chrome is essential for maintaining security. Users can follow these steps:
- Launch Google Chrome.
- Click on the three vertical dots in the top-right corner to open the menu.
- Select ‘Help’ from the dropdown menu.
- Choose ‘About Google Chrome’ from the submenu.
- Google Chrome will automatically check for updates and begin the installation process if available.
- After the update is complete, click the ‘Relaunch’ button to restart Google Chrome with the latest version.
Bhupendra Singh Chundawat is a seasoned technology journalist with over 22 years of experience in the media industry. He specializes in covering the global technology landscape, with a deep focus on manufacturing trends and the geopolitical impact on tech companies. Currently serving as the Editor at Udaipur Kiran, his insights are shaped by decades of hands-on reporting and editorial leadership in the fast-evolving world of technology.
