Why these vulnerabilities exist As per the description provided by CERT-In, “these vulnerabilities exist in Google Chrome due to Type Confusion in V8, Data Transfer and DevTools Inappropriate implementation in Full-screen mode and Download Out of bounds read in WebRTC Use after free in GPU Heap buffer overflow in WebUI Insufficient policy enforcement in DevTools & Integer overflow in Core.” The government body has further clarified that successful exploitation of these vulnerabilities can allow attackers to execute arbitrarily and gain access to sensitive information on the targeted system. Who all are affected CERT-In has mentioned that users running the Google Chrome version prior to 1.77/.78 for Windows and 1.77 for Mac and Linux are affected by the recently found vulnerabilities.
0 kommentar(er)
