CERT-In Alerts Chrome Security Risks for Mac & Windows Users
Chrome browser, the crowned king of the browser world, is posing menacing security risks, triggering warnings for Mac and Windows users.?
CERT-In, India’s supreme cybersecurity watchdog,? has recently alerted users of two critical cyber risks with Chrome that have enabled remote attackers to exploit the target’s data and system.
Unmasking the Security Flaws
According to the CERT-In report, the two flaws have been identified as - CIVN-2025-0007 and CIVN-2025-0008.
Risk Level
High & Critical
Decoding Flaw Type 1 - CIVN-2025-0007
This is a case of multiple vulnerabilities that could enable remote attackers to execute arbitrary code, cause Denial of Service, expose sensitive information, and bypass security levels on the targeted systems.?
Targets: Google Chrome users for Desktop and all end-user organizations.
Impact: Hackers exploited these flaws to breach data, and expose sensitive information.
领英推荐
Decoding Flaw Type 2 - CIVN-2025-0008
This is also a reported case of multiple vulnerabilities that have been enabling remote attackers to launch similar exploits (execution of arbitrary code, Denial of Service) as? the Type 1 flaw.?
Targets: Same as Flaw Type 1
Impact: Exposes sensitive information and disrupts operations
Flaws and Findings
CERT-In claimed these flaws existed in Chrome due to out-of-bound memory access in V8, inappropriate integration in navigation, fullscreen, fenced frames, payments, extensions & compositing, out-of-bounds read in metrics, stack buffer overflow in tracing, race in frames, and insufficient data validations in extensions.?
Security Recommendations:
Wrapping Up
Though the current techspot is on Chrome vulnerabilities, the cyber world has always been a vulnerable space for users. With the rising rate and complexities of cyber crimes, the demand for skilled cyber professionals is skyrocketing. Join the tribe by enrolling in DataSpace Academy’s popular cybersecurity courses.