 "CERT-In issues alert for vulnerabilities in Microsoft Edge browser: Details")
The Indian Computer Emergency Response Team (CERT-In) has issued an advisory regarding vulnerabilities in the Microsoft Edge browser for Windows. The Ministry of Electronics and Information Technology’s nodal agency has classified these vulnerabilities as high risk, stating that a remote attacker could exploit them to bypass security restrictions and execute arbitrary code on the targeted system.
“These vulnerabilities exist in Microsoft Edge (Chromium-based) due to insufficient data validation in Mojo, inappropriate implementation in V8, and integer overflow in Layout. A remote attacker could exploit these vulnerabilities by sending a specially crafted request to the targeted system,” said CERT-In.
According to the agency, the affected software includes Microsoft Edge versions prior to 129.0.2792.79.
Microsoft has already addressed these vulnerabilities in the latest Microsoft Edge Stable Channel (Version 129.0.2792.79) and Microsoft Edge Extended Stable Channel (128.0.2739.107) updates. The company stated that the Microsoft Security Response Center (MSRC) investigates all reports of security vulnerabilities affecting Microsoft products and services, and its latest releases incorporate the latest updates from the Chromium project.
It is recommended that users update their Microsoft Edge web browser to the latest version to avoid any security threats.
Last month, CERT-In released an advisory highlighting multiple vulnerabilities in Apple products, including iPhones, Macs, and Apple Watches. According to the agency, the high-risk vulnerabilities on Apple devices running older software versions could allow attackers to access sensitive information, execute arbitrary code, bypass security restrictions, or even bypass authentication. Apple users are advised to update their devices to the latest version of the operating system to avoid security breaches.
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →*Subscribe to Business Standard digital and get complimentary access to The New York Times
Smart Quarterly
₹900
3 Months
₹300/Month
SAVE 25%
Smart Essential
₹2,700
1 Year
₹225/Month
SAVE 46%
*Complimentary New York Times access for the 2nd year will be given after 12 months
Super Saver
₹3,900
2 Years
₹162/Month
Subscribe
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app
SAVE 25%