CERT-In warned that older versions of Google Chrome contain critical vulnerabilities that are being actively exploited by attackers. The flaws could allow remote code execution, leading to data theft or device takeover. Users are advised to update Chrome to version 146.0.7680.80 or newer immediately and avoid suspicious links or downloads.
India’s Computer Emergency Response Team (CERT-In) has issued a high-risk alert to Google Chrome users, warning that outdated versions of the browser leave personal and sensitive data vulnerable to cyberattacks. The flaws in older versions allow criminals to take full control of devices. CERT-In also warns that these flaws are being actively exploited by cybercriminals.
Critical flaws actively exploited
In advisory CIVN-2026-0141, CERT-In flagged two severe vulnerabilities—CVE-2026-3909 and CVE-2026-3910—in Chrome versions older than 146.0.7680.80 across Windows, macOS, and Linux. The flaws, present in the Skia graphics library and V8 JavaScript engine, can let remote attackers execute arbitrary code if users visit a malicious website. Once exploited, attackers can steal data, take full control of devices, or disrupt services. These issues are already being used in real-world attacks.
How to stay safe?
-
Fact Check: Is Rinku Singh The New Captain Of Kolkata Knight Riders?
-
Mark Zuckerberg's $270m Hawaii doomsday bunker and underground shelter
-
Belthangadi: Mahesh Shetty Timarody served third externment order
-
Karnataka govt fulfilled Rs 100/tonne aid promise to cane farmers: Minister
-
Victorian scholar Annette S Beveridge's long road to translating Gulbadan Begum's 'Humayun Nama'
