Government warns against multiple vulnerabilities in Google Chrome OS: Details
Live MintGoogle Chrome OS has multiple vulnerabilities that can allow hackers to cause a denial-of-service attack on the victim’s chromebook. The Indian Computer Emergency Response Team has spotted multiple vulnerabilities in Google ChromeOS LTS channel version prior to 96.0.4664.219. In its advisory, it says that “multiple vulnerabilities have been reported in Google ChromeOS which could allow a remote attacker to execute arbitrary cc cause a denial-of-service condition on the targeted system". It says that these vulnerabilities exist in Google ChromeOS due to Use after free in Blink, Browser Creation, WebUI, Managed devices A Chrome OS Shell, Sign-In Flow, Extensions & Extensions API, Insufficient policy enforcement in Cookies, Inappropriate implementation in Extensions API, Heap buffer overflow in PDF and Side-channel information leakage in Keyboard input. The advisory said that the bugs in Mozilla Firefox browser could allow a remote attacker to bypass security restrictions, execute arbitrary code and cause denial of service attack on the targeted system.