Google Chrome, Microsoft Edge Security Flaws: CERT-In Asks Users to Update to Latest Versions With Security Fixes

Users can update their current Google Chrome and Microsoft Edge browsers to the latest version.

Advertisement
Written by Dhruv Raghav, Edited by David Delima | Updated: 16 October 2025 12:09 IST
Highlights
  • Bad actors can take out DoS attacks on Edge
  • Google and Microsoft have yet to patch the flaws
  • Microsoft Edge’s Chromium engine version is at risk

Hackers can gain remote access to systems and run scripts

Photo Credit: Pexels/Shimazaki

The Indian Computer Emergency Response Team (CERT-In) has warned that hackers can gain unauthorised access to users systems by misusing security flaws on older versions of Google Chrome and Microsoft Edge (Chromium-based) browsers. These vulnerabilities would enable them to execute remote code and denial-of-service (DoS) attacks. The security flaws were highlighted by CERT-In on October 15. Users can update their browsers to the latest versions to stay protected from these flaws.

Browser Flaws Let Hackers Execute Arbitrary Code Remotely

In its latest vulnerability notes (CIVN-2025-0258 and CIVN-2025-0256), CERT-In warned users about a high-risk vulnerability that compromises the security of Google Chrome and Microsoft Edge browsers. The vulnerability was found in Google Chrome for Desktop versions older than 141.0.7390.107/.108 for Windows, Mac, and Linux, as well as Chromium-based Microsoft Edge Stable Channel 141.0.3537.71 and older versions.

Advertisement

On Chrome for Desktop, the security flaw allows bad actors to execute arbitrary code on a user's desktop remotely. While this might compromise a user's desktop security, it can also lead to service disruptions. CERT-In highlighted that the vulnerability is related to “Use after free in Safe Browsing”, which can be exploited by a hacker by sending a specially crafted request to the device.

The above-mentioned versions of the Microsoft Edge browser running on the Chromium engine can grant hackers unauthorised access to a device for executing arbitrary code, too. They can also execute denial-of-service (DoS) attacks on the targeted system.

Advertisement

CERT-In pointed out that the security flaw exists because of “Heap buffer overflow in Sync and Use after free in storage”. A bad actor could use these vulnerabilities by persuading a victim to visit a specially crafted web page.

Both tech giants, Google and Microsoft, are yet to patch these security flaws, which also puts their users' privacy at risk. Hence, people are advised to update their respective browsers to their latest available versions as a safeguarding measure.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Redmi Note 17 With an 8,000mAh Battery Debuts at This Price
  2. Huawei Pura 90s Pro Series Debuts With Kirin 9030S Chip, 6,000mAh Batteries
  3. Nvidia's GeForce Now Cloud Gaming Service Is Finally Available in India
  4. OnePlus Is Reportedly Preparing to Withdraw From These Two Markets
  5. Google Pixel 11 Series Gets Listed on the US FCC Database Ahead of Its Debut
  6. Redmi Note 17 Pro Launched With Snapdragon 6s Gen 4 and 9,000mAh Battery
  7. Apple's iOS 27 Public Beta is Now Available to Download on Your iPhone
  8. Oppo Find X10 Pro Max Could Debut With Three 200-Megapixel Rear Cameras
  9. iQOO 16, Neo 12 and Z12 Turbo May Debut With These Big Battery Upgrades
  1. Huawei Pura 90s Pro, Pura 90s Pro Max Launched With Kirin 9030S Chip, 6,000mAh Batteries: Price, Features
  2. Redmi Note 17 Launched With 8,000mAh Battery, 50-Megapixel Rear Camera: Price, Specifications
  3. UK Tokenisation Drive May Boost Annual Output by $44 Billion: Report
  4. Redmi Note 17 Pro Launched With Snapdragon 6s Gen 4 and 9,000mAh Battery: Price, Features
  5. Japan’s SBI VC Trade Expands Stablecoin Services With 3 Percent Lending Yield
  6. Meta Pulls Muse AI Image Feature Less Than a Week After User Backlash Highlights Privacy Risks
  7. HMD Asha 505 Surfaces Online With Lumia-Inspired Design, 5-Inch Display in New Leaked Renders
  8. Honor Robot Phone Leak Reveals Key Specifications Ahead of Long-Awaited Debut
  9. Acer Aspire 3 (2026) Launched in India With Up to 15.6-Inch Display, Intel Celeron N4500 Processor: Price, Features
  10. Realme C100x India Launch Date Announced; Leaked Image of Retail Box Hints at Price in India
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.