Tuesday, April 23, 2024
Advertisement
  1. You Are At:
  2. News
  3. Technology
  4. CERT-In issues warning about several vulnerabilities in Android and Mozilla Firefox

CERT-In issues warning about several vulnerabilities in Android and Mozilla Firefox

The cyber agency has cautioned that a remote attacker could exploit this vulnerability by enticing a user to visit a specifically crafted request. This vulnerability is present in Apple Products and is attributed to out-of-bounds write issues in WebRTC and CoreMedia.

Saumya Nigam Edited By: Saumya Nigam @snigam04 New Delhi Updated on: April 03, 2024 19:02 IST
CERT-In, vulnerabilities, Android, Mozilla Firefox
Image Source : FILE CERT-In issues warning about several vulnerabilities in Android and Mozilla Firefox

The Indian Computer Emergency Response Team (CERT-In), which comes under the Ministry of Electronics & Information Technology, warned users of multiple vulnerabilities in Android and Mozilla Firefox web browsers which could allow an attacker to obtain sensitive information, execute arbitrary code and cause Denial-of-Service conditions on the targeted system.

As per the advisory, 'Android 12, 12L, 13, 14', and 'Mozilla Firefox versions before 124.0.1 and Mozilla Firefox ESR versions before 115.9.1' are the affected software versions, respectively.

"Successful exploitation of these vulnerabilities could allow the attacker to obtain sensitive information, gain elevated privileges and cause a denial-of-service condition on the targeted system," said the CERT-In advisory.

In Android, these vulnerabilities exist due to flaws in the Framework, System, MediaTek components, Widevine, Qualcomm components and Qualcomm closed-source components.

In Mozilla Firefox, these vulnerabilities exist due to out-of-bounds access via Range Analysis bypass and Privileged JavaScript Execution via Event Handlers.

The cyber agency advised users to apply appropriate updates when available.

Meanwhile, CERT-In has warned users of vulnerabilities in Apple products such as iPhones, MacBooks, iPads, and others.

According to the cyber agency, a remote attacker could exploit this vulnerability by persuading a victim to visit specially crafted request.

This vulnerability exists in Apple Products due to out-of-bounds write issues in WebRTC and CoreMedia, it added.

ALSO READ how to unlock the Google Gemini potential for YouTube videos?

Google Gemini reportedly offered a variety of functionalities which could be benefitted by users in the era of AI-powered chatbots like ChatGPT. The AI chatbot has been integrated with services like Google Workspace, Google Maps and YouTube. Gemini AI has further introduced innovative features which aim at streamlining tasks.

ALSO READ Motorola Edge 50 Pro launched with AI capabilities: Price, features and moreThe new Edge 50 Pro smartphone is available in two storage variants- 8GB RAM + 256GB storage and 12GB RAM + 256GB storage. The base variant of the Edge device has been priced at Rs 31,999 onwards and the other variant has been priced at Rs 35,999.

Inputs from IANS
Advertisement

Read all the Breaking News Live on indiatvnews.com and Get Latest English News & Updates from Technology

Advertisement
Advertisement
Advertisement
Advertisement