Government Issues High-Severity Alert for Google Chrome and Firefox Users
India’s cybersecurity agency, CERT-In (Indian Computer Emergency Response Team), has issued a high-severity security warning for users of Google Chrome and Mozilla Firefox. According to the advisory, older versions of both browsers contain multiple critical vulnerabilities that could allow hackers to steal sensitive data or install malware on devices. Users have been urged to update their browsers immediately to the latest versions.
Vulnerabilities Found in Google Chrome
The advisory highlights that Chrome versions older than 141.0.7390.54 on Linux and 141.0.7390.54/55 on Windows and macOS are affected.
Some of the key flaws include:
- Heap buffer overflow in WebGPU and Video components
- Data leaks in Storage and Tab functions
- Incorrect implementation in Media and Drmbox
If exploited, these weaknesses could allow a remote attacker to trick users into visiting a malicious website, execute arbitrary code on the system, and gain access to personal data.
Firefox Users Also at Risk
CERT-In also warned that Mozilla Firefox versions earlier than 143.0.3 (and versions below 143.1 on iOS) carry serious vulnerabilities.
These include:
- Improper isolation of cookie storage
- Integer overflow issues in Graphics Canvas2D
- JIT miscompilation in the JavaScript engine
Through these flaws, attackers could potentially gain control of a user’s system or steal sensitive information stored in the browser, especially if the victim clicks on a malicious web request.
What Should Users Do?
CERT-In has classified these alerts as high-risk and strongly recommends that users update to the latest versions of Google Chrome and Mozilla Firefox without delay.
Both Google and Mozilla have already released security patches addressing the vulnerabilities. Users can also visit the official CERT-In website for detailed vulnerability notes and direct patch links.
By keeping browsers updated, users can significantly reduce the risk of cyberattacks and ensure their devices remain secure.
