Chrome Users Alert! Govt Issues Major Risk Advisory For Mac, Windows, Chromebooks. Here's What You Must Do
CERT-In has flagged two significant flaws, CIVN-2025-0007 and CIVN-2025-0008, affecting Google Chrome on both Mac and Windows.
The Indian Computer Emergency Response Team (CERT-In) has issued an urgent advisory for users of Google Chrome across Mac, Windows, and ChromeOS platforms, warning of critical vulnerabilities that could lead to data breaches, system instability, and unauthorised access to sensitive information. The alert stresses the need for immediate updates to safeguard against potential attacks.
Vulnerabilities Affecting Chrome On Mac, Windows
CERT-In has flagged two significant flaws, CIVN-2025-0007 and CIVN-2025-0008, affecting Google Chrome on both Mac and Windows. These vulnerabilities, present in Chrome versions before 132.0.6834.83/8r for Mac and 132.0.6834.110/111 for Windows, allow attackers to execute arbitrary code, trigger denial-of-service (DoS) attacks, or bypass security measures.
The flaws are related to improper data handling and out-of-bounds memory access within the browser’s navigation features.
For Windows users, the risks are equally severe, with the potential for hackers to exploit these vulnerabilities to extract sensitive data, crash systems, or gain unauthorised access. CERT-In warns that both individual and corporate users are at considerable risk.
ChromeOS Devices At Risk
Chromebooks running older versions of ChromeOS (prior to version 16093.68.0) are also exposed to a range of threats. These include spoofing, cross-site scripting, and remote code execution due to flaws such as stack buffer overflows and integer overflows.
Malicious webpages could be used to exploit these weaknesses, potentially allowing remote attackers to access private data or bypass security controls.
Affected Devices & Users
While desktops, laptops, and Chromebooks are most at risk, mobile users on smartphones face fewer threats from these vulnerabilities. Nevertheless, CERT-In recommends all users remain cautious and stay updated.
Why Prompt Action Is Essential
Neglecting these vulnerabilities can result in serious consequences, including security breaches, data theft, and system crashes. With cybercriminals actively exploiting these flaws, prompt software updates are critical.
How To Secure Your Devices
To mitigate the risks, users are advised to update Google Chrome and ChromeOS immediately.
Detailed instructions are available on the official Chrome Releases blog. Ensuring your devices are set to receive automatic updates is also highly recommended for ongoing protection.
Top Headlines
