Chrome Update Alert: Hackers Can Take Over Your PC
CERT-In warns Chrome desktop users of critical flaws that may let hackers access systems. Update now to avoid data theft, crashes, or full system control.
image for illustrative purpose
India’s national cybersecurity watchdog, the Indian Computer Emergency Response Team (CERT-In), has issued a high-severity advisory for users of Google Chrome on desktop platforms. The agency has identified critical vulnerabilities affecting Chrome browsers not updated beyond version 137.0.7151.119/.120 for Windows and macOS, and version 137.0.7151.119 for Linux.
CERT-In’s bulletin, tagged CIVN-2025-0130, outlines that the vulnerabilities stem from specific technical flaws: an integer overflow in Chrome’s V8 JavaScript engine and use-after-free issues in the Profiler component. These weaknesses expose systems to significant risks if exploited remotely.
If a user interacts with a malicious web page using a vulnerable version of Chrome, a remote attacker could execute arbitrary code, disrupt system performance, or access confidential information without the user’s consent. Such exploits could compromise entire systems or cause them to crash unexpectedly.
The identified risks include:
* Remote Code Execution: Unauthorized access to execute harmful code on target machines.
* Denial-of-Service (DoS): System may crash or become unresponsive.
* Data Exposure: Confidential or sensitive data might be extracted from compromised systems.
Users operating affected versions on Windows, macOS, or Linux are urged to update their browsers without delay. Chrome users relying on outdated versions are considered at high risk, including individuals and enterprises that depend on the browser for routine tasks.
Protective Measures:
CERT-In advises the following immediate steps:
1. Launch Chrome browser.
2. Access the menu via the top-right three-dot icon.
3. Navigate to Help > About Google Chrome.
4. Allow Chrome to search and apply the latest updates.
5. Restart the browser to complete the installation.
Google has confirmed the rollout of a patched version, stating: “The Stable channel has been updated to 137.0.7151.119/.120 for Windows and Mac, and to 137.0.7151.119 for Linux. This update will become available gradually over the next few days.”
