CERT-In, India’s cyber security watchdog, has discovered several vulnerabilities in the widely-used Google Chrome operating system. These vulnerabilities have the ability to bypass security measures on the targeted system.
According to a CERT-In advisory, attackers can exploit vulnerabilities to run unauthorized code, cause a denial of service, and bypass security on targeted systems.
“These vulnerabilities exist in Google Chrome OS due to use after free in profiles, inappropriate implementation in downloads, heap buffer overflow in pdf and issue in Linux Kernel. An attacker could exploit these vulnerabilities by persuading a victim to visit a specially-crafted request on the targeted system.”
CERT-In regularly identifies vulnerabilities in devices and operating systems and publicly warns users and companies about them.