|CERT-In Vulnerability Note
Multiple Vulnerabilities in Google Chrome
Original Issue Date:December 14, 2021
Severity Rating: HIGH
- Google Chrome version prior to 96.0.4664.110
Multiple vulnerabilities have been reported in Google Chrome which could be exploited by a remote attacker to execute arbitrary code on the targeted system.
Multiple vulnerabilities exists in Google Chrome due to Insufficient data validation in Mojo , Use after free in Swiftshader and V8, Object lifecycle issue in ANGLE and Heap buffer overflow in Swiftshader. A remote attacker could exploit these vulnerabilities by enticing a victim to visit a specially crafted web page.
Successful exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code on the targeted system.
Note: The vulnerability (CVE-2021-4102) is being actively exploited in the wild.
Apply appropriate security updates as mentioned in below link:
The information provided herein is on "as is" basis, without warranty of any kind.
Email: firstname.lastname@example.org Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003