Google Chrome Security Flaws Could Grant Hackers Unauthorised System Access: CERT-In

Multiple safety vulnerabilities detected in Google Chrome for Desktop may put a number of customers in danger, in accordance with an advisory issued by the Indian Computer Emergency Response Team (CERT-In). Google has already patched the safety flaws affecting its browser utility. The nodal authority for cybersecurity within the nation has suggested all customers and organisations utilizing Google Chrome for Desktop throughout three platforms to replace to the newest model of the browser to be able to stay protected against these safety flaws.

Hackers Could Persuade Victims to Visit Malicious Websites to Gain System Access

CERT-In gives particulars of the safety flaws affecting Google Chrome in its vulnerability notice CIVN-2025-0099 that was revealed on May 16. It has been assigned a “high” severity score, by the federal government company. The flaws have an effect on Google Chrome for Windows, Mac, and Linux computer systems older than model previous to 136.0.7103.113 (and older than 136.0.7103.114 for Windows computer systems).

The description for the primary safety flaw (CVE-2025-4664) reveals that an “insufficient policy enforcement in Loader in Google Chrome prior to 136.0.7103.113 allowed a remote attacker to leak cross-origin data via a crafted HTML page.” An outline for the CVE-2025-4609 vulnerability reveals it was associated to an “incorrect handle provided in unspecified circumstances in Mojo.”

According to CERT-In, hackers may use these flaws to achieve unauthorised entry to a consumer’s laptop. In order to leverage these flaws, hackers would want to influence customers to go to a maliciously crafted web site. Users working on the aforementioned variations of Chrome for Desktop can be weak to hacking by way of these safety flaws.

Google revealed a weblog publish on May 14, informing customers that it had patched 4 safety flaws affecting the browser, and credited two exterior researchers for locating the safety flaws in CERT-In’s advisory.

CERT-In has suggested finish consumer organisations and people to replace to the newest steady variations of Google Chrome, which comprise patches for these safety flaws. Users on Linux and Mac computer systems ought to replace to model 136.0.7103.113, whereas Windows customers might want to set up the newest 136.0.7103.114 replace.