Users have been alerted about several vulnerabilities in Google Chrome for desktops that could allow hackers to take control of their computers by the Indian Computer Emergency Response Team (CERT-In).
According to a warning from the IT Ministry’s CERT-In, the numerous flaws could allow a remote attacker to run arbitrary code and circumvent security measures on the targeted machine. “These vulnerabilities exist in Google Chrome due to use after free in FedCM, SwiftShader, ANGLE, Blink, Sign-In Flow, Chrome OS Shell; Heap buffer overflow in Downloads, insufficient validation of untrusted input in Intents, Insufficient policy enforcement in Cookies and Inappropriate implementation in Extensions API, ” the cyber agency said.
By sending the targeted system specially crafted queries, a hacker could take advantage of these vulnerabilities. According to CERT-In, a remote attacker may overcome security limitations and execute arbitrary code if these vulnerabilities were successfully exploited.
CERT-In also warned about bugs in Apple iOS, iPadOS and macOS and a “remote attacker could exploit this vulnerability by enticing a victim to open a specially-crafted file”.