Indian Government Issues High-Risk Alert for Google Chrome Users
The Indian government has issued a critical security warning about high-severity vulnerabilities in Google Chrome for desktop. These flaws could allow attackers to execute malicious code or bypass security protections simply by users visiting a compromised webpage.
Key Takeaways
- Multiple high-risk vulnerabilities affect Chrome versions prior to 142.0.7444.134/.135.
- Attackers can exploit these flaws through crafted webpages to run code on your system.
- India’s CERT-IN has rated the severity as HIGH and urges immediate updating.
Affected Chrome Versions and Vulnerabilities
Security advisories confirm that Google Chrome for Windows, macOS, and Linux builds before versions 142.0.7444.134/.135 are vulnerable. The security flaws include:
- Out-of-bounds write in WebGPU
- Multiple flaws in V8, Views, and Omnibox components
These vulnerabilities could enable remote code execution or interface spoofing, requiring only that a user opens a malicious webpage.
Potential Impact and Security Risks
Successful exploitation could allow attackers to:
- Execute code on your machine
- Access sensitive data
- Bypass security checks
- Potentially lead to full device takeover
India’s Computer Emergency Response Team (CERT-IN) has classified the threat level as HIGH, particularly concerning for businesses and individuals handling confidential information.
How to Update Chrome Immediately
To protect your system, follow these steps:
- Open Google Chrome
- Click the three-dot menu in the top-right corner
- Navigate to Help > About Google Chrome
- The browser will automatically check for and install available updates
- Restart Chrome when prompted
Verify your Chrome version is 142.0.7444.135 or later on macOS/Linux, or the equivalent patched build on Windows. Enterprise administrators should deploy updates through endpoint management systems without delay.
Organizational Security Measures
IT teams should prioritize the following actions:
- Deploy Chrome security patches immediately across all systems
- Review internal logs for any suspicious activity
- Secure remote access services with additional protections
- Disable unnecessary browser extensions
- Implement network filtering for potentially dangerous websites
- Ensure endpoint detection tools are current during patch deployment
The official Chrome release notes contain detailed information about the specific CVEs addressed in this update.
Critical Security Advisory
All desktop Chrome users must update their browsers immediately. These serious security vulnerabilities have prompted formal warnings from Indian authorities, and delaying updates significantly increases the risk of system compromise. Google has actively addressed these issues in the latest version.
