Indian authorities flag high-severity Chrome flaws affecting Windows, macOS, and Linux, urging users and organizations to update immediately.
The Indian government has issued a formal warning to users and organizations over critical security vulnerabilities in Google Chrome for desktop. The advisory, classified as high severity, highlights flaws that could allow attackers to run code, access sensitive data, or bypass security protections.
According to the advisory, Chrome builds prior to 142.0.7444.134 / .135 on Windows, macOS, and Linux are vulnerable. The bugs include an out-of-bounds write in WebGPU, as well as flaws in V8, Views, and Omnibox, which could enable remote code execution or UI spoofing if a user visits a maliciously crafted web page.
“Successful exploits can compromise accounts or even take over entire devices,” said the alert issued by India’s cyber agency.
The government urged immediate action, particularly for businesses or individuals handling sensitive information. IT teams are advised to deploy patched versions, review internal logs for suspicious activity, and maintain protections for remote access systems. Additional precautions include disabling unnecessary browser extensions, enforcing network filtering for risky sites, and ensuring endpoint detection tools are up to date.
Read Also: India And US Seal 10-Year Defence Pact Amid Trade Tensions
How to update: Users should open Chrome, click the three-dot menu > Help > About Google Chrome. The browser will automatically check for updates and install the latest version. After updating, ensure the version reads 142.0.7444.135 or later on macOS and Linux, with the corresponding patched build for Windows. Organizations managing multiple devices should deploy updates via endpoint management systems without delay.
Google has acknowledged the issues and is actively patching the affected builds. However, authorities stressed that postponing updates significantly increases the risk of compromise. The vulnerabilities are particularly concerning because they require minimal interaction from the user — simply visiting a malicious webpage could trigger an exploit.
Cybersecurity experts warn that timely patching is the most effective defense against these types of vulnerabilities, noting that the rapid adoption of unpatched browsers could lead to widespread attacks.
“Desktop users must update immediately,” the advisory concluded. “The bugs are serious, actively addressed by Google, and delaying patches puts you at high risk.”
As Chrome remains one of the most widely used browsers in India and globally, authorities stress that swift action is essential to protect both individual and organizational data from potential cyberattacks.