The Indian Computer Emergency Response Team (CERT-IN) has issued an urgent security alert regarding significant vulnerabilities in Google Chrome. The flaws, identified as CVE-2024-8362 and CVE-2024-7970, could potentially allow remote attackers to gain unauthorized access to your computer, posing serious risks to user security.
The vulnerabilities impact Chrome versions earlier than 128.0.6613.119/.120 on Windows and macOS, and versions prior to 128.0.6613.119 on Linux. Users running these outdated versions are at heightened risk of cyberattacks due to the identified “use after free” bugs in the Web Audio component of Chrome.
These critical vulnerabilities enable cybercriminals to exploit the browser and execute malicious commands on affected systems. The exploitation could lead to unauthorized control of the computer, data theft, malware installation, or further cyberattacks.
CERT-IN has emphasized the severity of these vulnerabilities, warning that attackers might exploit them through drive-by downloading—where simply visiting a compromised website can trigger an infection without additional user interaction. This highlights the importance of cautious browsing practices, particularly avoiding unknown or suspicious websites and links.
In response to these security threats, Google has released updates to address the vulnerabilities. CERT-IN strongly advises all Chrome users to update their browsers to the latest version immediately to protect their systems from potential exploitation. By ensuring that your browser is up to date, you can significantly reduce the risk of falling victim to these serious security flaws.
ALSO READ | Apple Watch Series 10 Set To Feature Advanced ECG Sensor For Detecting Sleep Apnoea | NewsX