The Computer Emergency Response Team of India (CERT-IN) has issued an urgent alert for Google Chrome users about new serious vulnerabilities. These issues, known as CIVN-2024-0282, could allow remote attackers to gain authorized access to your computer.
The flaws affect Chrome versions prior to 128.0.6613.119/.120 on Windows and macOS, and versions prior to 128.0.6613.119 on Linux. It is essential to update your browser to the latest version to stay secure.
The identified issues, marked as CVE-2024-8362 and CVE-2024-7970, involve “use-after-free” bugs in Chrome’s Web Audio component. These vulnerabilities give cybercriminals the opportunity to infiltrate your system and execute commands without your consent. This could allow attackers to take full control of your computer, potentially leading to data theft, malware installation, or further cyberattacks.
CERT-IN has highlighted the seriousness of these vulnerabilities and warned that attackers could exploit them to lure users to malicious websites. This type of attack, called drive-by download, occurs when simply visiting a compromised website can infect the system without the user having to do anything else.
Therefore, it is important to be careful about the websites you visit and the links you click on, especially those from unknown or suspicious sources. Google, in response to these issues, has released updates to fix the vulnerabilities. CERT-IN recommends that users update their browsers to the latest version as soon as possible to ensure their security.
Disclaimer
The information contained in this post is for general information purposes only. We make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the website or the information, products, services, or related graphics contained on the post for any purpose.
We respect the intellectual property rights of content creators. If you are the owner of any material featured on our website and have concerns about its use, please contact us. We are committed to addressing any copyright issues promptly and will remove any material within 2 days of receiving a request from the rightful owner.