The Pakistan Telecommunication Authority (PTA) is urging users to immediately update their Google Chrome browsers due to the discovery of two serious security vulnerabilities.
The advisory indicates that these vulnerabilities may allow remote attackers to execute malicious code on the impacted systems. These vulnerabilities impact all versions of Chrome released before the emergency update which affects Windows, macOS, and Linux platforms.
The PTA has reported two significant vulnerabilities. The first one known as CVE-2024-4671, allows attackers to break out of Chrome’s sandbox, which could let them access a user’s device via specially designed web pages. The second issue, CVE-2024-4761, impacts the V8 JavaScript engine and can cause an out-of-bounds write, potentially leading to arbitrary code execution. Both of these vulnerabilities are considered high-severity threats, and they can be exploited through malicious websites.
Google has recommended that all users upgrade to Chrome version 124.0.6367.207 or newer to minimize potential risks. By restarting the browser, users can check for any available updates, or they can navigate to “Settings > About Chrome” to find out their current version. To ensure ongoing protection against emerging threats, it’s advised to enable automatic updates for Chrome.
The PTA has emphasized how crucial it is for users to monitor their systems closely for any signs of unusual activity that could indicate a potential exploitation attempt. Both businesses and individuals are encouraged to report any security incidents related to these vulnerabilities through the PTA CERT Portal or by sending an email.
As browser-based security threats become more common, cybersecurity professionals stress the importance of taking proactive steps.
For more daily updates, please visit our News Section.