New Delhi: The Indian cybersecurity agency, Computer Emergency Response Team (CERT-In), has issued a high-risk warning to Google Chrome users in India. Multiple vulnerabilities have been discovered in Google ChromeOS LTS, which could be exploited by remote attackers for denial of service, elevation of privilege, and remote code execution on targeted systems. The vulnerabilities include issues such as use after free in extensions, heap buffer overflow in vp8 encoding, out-of-bounds memory access, flaws in AMD platforms, and problems in the Linux Kernel. One of the vulnerabilities, CVE-2023-5217, is currently being exploited in the wild. Users are advised to update their Chrome browser immediately to mitigate these security risks. Google has already released an update containing patches and solutions for these issues. To update Google Chrome, users can click on the three dots menu in the top left corner, select ‘Help,’ click ‘About Google Chrome,’ and the browser will automatically check for and install updates. If the browser is up to date, a message saying “Google Chrome is up to date” will appear.
List Of Google Chrome ‘Vulnerabilities’ Reported By CERT-In