India’s Computer Emergency Response Team (CERT-IN) issued a warning for Microsoft Edge web browser users. Government agency has found several vulnerabilities in Chromium platform The edge Browser. Additionally, the severity of these vulnerabilities has been marked as ‘high’, which could allow remote hackers to bypass security restrictions and execute arbitrary code or cause denial of service. Service (DoS) on the targeted system.
CERT-IN is a focal agency under the Ministry of Electronics and Information Technology. Government agency responsible for highlighting bugs and cybersecurity threats like phishing and hacking
What did the government say?
CERT-IN noted that “these vulnerabilities exist in Chromium Open Source Software (OSS) used by Microsoft Edge (Chromium-based) due to Free After Use in Guest View, Free After Use in PDF, Free Post-Use in Service Worker API, Free Post-Use in Views, and Incomplete validation of untrusted inputs in Files. A remote attacker can exploit these vulnerabilities by sending a specially crafted request on the targeted system. ”
Exploiting these vulnerabilities could allow hackers to bypass security restrictions and execute arbitrary code or DoS conditions on the targeted system.
Who is affected?
According to the warning page, everyone is running a version of the Microsoft Edge web browser prior to 103.0.1264.71.
What is the solution?
CERT-IN has recommended that users apply the appropriate update to their web browser. Thankfully, Microsoft has rolled out an update for Microsoft Edge that contains fixes for the mentioned vulnerabilities.
How to update Microsoft Edge
Click on the three dots in the top right corner
Go to Help and Feedback → About Microsoft Edge
Browser update.
FacebookTwitterInstagramKOOKS APPYOUTUBE
