India’s cybersecurity watchdog said these vulnerabilities can allow attackers to compromise user data and devices
CERT-In, India’s cybersecurity watchdog, which comes under the Ministry of Electronics and Information Technology, has reported two vulnerabilities in the Google Chrome browser. It said these vulnerabilities can allow attackers to compromise user data and devices, highlighting the importance of updating to the latest version of the browser, TOIÂ reported.
The Indian Computer Emergency Response Team (CERT-In) has asked users to immediately apply the necessary security patches and update their Chrome browser to mitigate these risks. These users include Mac, PC and laptop platforms and not that much for smartphone users.Â
These vulnerabilities can allow attackers to compromise user data and devices, highlighting the importance of updating to the latest version of the browser. CERT-In has asked users to immediately apply the necessary security patches and update their Chrome browser to mitigate these risks.
According to CERT-In’s website, Google Chrome is currently facing — CIVN-2025-0007 and CIVN-2025-0008 — vulnerabilities which have a severity rating of critical and high, respectively. The first vulnerability affects Google Chrome versions before 132.0.6834.83/8r (in Windows/ Mac) while the other one targets Google Chrome versions before 132.0.6834.110/111 for Windows and Macs as well as versions before 132.0.6834.110 for Linux.
CERT-In claimed that these vulnerabilities exist in Google Chrome due to out-of-bounds memory access in V8, inappropriate implementation in navigation, fullscreen, fenced frames, payments, extensions and compositing, an integer overflow in Skia, out-of-bounds read in metrics, stack buffer overflow in Tracing, Race in Frames and Insufficient data validation in Extensions.
