A warning has been issued for Google Chrome users by the Indian Computer Emergency Response Team (CERT-In), which is part of the Ministry of Electronics and Information Technology. Multiple Google Chrome flaws that could let remote attackers run arbitrary code and get around security measures on target systems have been reported.
No, not all Google Chrome users are impacted by the flaw. Users of Google Chrome using earlier versions than Google Chrome 104.0.5112.101 are in danger, according to the advice. It is advisable to update the browser on your laptop if you are using an outdated version of Google Chrome. Multiple vulnerabilities have been found in the Google Chrome browser, according to CERT-warning, In’s “which could allow a remote attacker to execute arbitrary code and security restriction bypass on the targeted system.”
It continues, “These vulnerabilities exist in Google Chrome due to use after free in FedCM, SwiftShader, ANGLE, Blink, Sign-in Flow, and Chrome OS Shell; heap buffer overflow in downloads, inadequate validation of untrusted input in intents, inadequate policy enforcement in Cookies, and inappropriate implementation in extensions API. In the wild, the vulnerability (CVE-2022-2856) is being used.” The alert advises users to apply patches promptly. Apple consumers were alerted to a vulnerability earlier this week by CERT-In, which was present in iOS and iPadOS versions prior to 15.6.1 and macOS Monterey versions prior to 12.5.1. By persuading a victim to open a specially created file, the central organization warned that it might enable a remote attacker to exploit vulnerabilities.
Serious security flaws for iPhones, iPads, and Macs have also been publicly reported by Apple, and if exploited, could give hackers entire control of these devices. The business urged its customers to update their software since it is “aware of a report that this issue may have been actively exploited.” Apple remained silent when asked if it knew how widely the problem had been abused. Two security reports about the problem have already been made public by the Cupertino-based corporation.