The Singapore Cyber Emergency Response Team (SingCERT) has issued an urgent advisory for users and administrators of Google Chrome and other Chromium-based browsers, including Microsoft Edge, to update their browsers to the latest versions without delay. This advisory, released on Monday (May 27), follows reports of a "high-severity vulnerability" currently being exploited by hackers.
Image: Google Getty
SingCERT, part of the Cyber Security Agency of Singapore (CSA), highlighted that older versions of these browsers are particularly at risk. Specifically, Google Chrome versions prior to 125.0.6422.60 are susceptible to this vulnerability, identified as CVE-2024-4947.
The vulnerability stems from a "type confusion bug in the V8 JavaScript engine" that underpins these browsers. This flaw not only impacts Google Chrome but also extends to other browsers built on the Chromium framework, such as Microsoft Edge.
"Successful exploitation of the vulnerability could allow an attacker to perform remote code execution via a crafted malicious HTML page," SingCERT explained. This means that attackers could potentially take control of a user's system by tricking them into visiting a maliciously designed webpage.
In response to this threat, SingCERT and the United States National Institute of Standards and Technology (NIST) have both advised affected users and administrators to apply the recommended updates provided by the browser vendors immediately. NIST has further suggested discontinuing the use of vulnerable browser versions if updates are not available, to prevent any potential security breaches.
Image: Circular Connection
The urgency of this advisory reflects the significant risk posed by the vulnerability, emphasizing the need for prompt action to protect user data and system integrity. By updating their browsers, users can mitigate the risk of exploitation and ensure their online activities remain secure.