In response to identified vulnerabilities in Microsoft Edge browsers, the Indian government has issued a warning specifically targeting users with Edge browser versions prior to 119.0.2151.44.
The Indian government, maintaining its vigilance against cyberattacks and online fraud, regularly alerts citizens to potential threats posed by various apps, websites, and platforms. The recent advisory highlights concerns regarding Microsoft Edge, a widely used web browser globally, holding the second-largest market share in the web browser segment after Google Chrome.
Despite Microsoft’s efforts to encourage Windows users to stick to the pre-installed browser through creative pop-ups, new designs, and features, some users prefer older versions for the sake of convenience. However, it’s essential to note that older browser versions are more susceptible to exploitation. Recognizing this, Microsoft consistently releases security updates for Edge to protect users’ personal information, including sensitive details like banking information, date of birth, and location.
The Indian Computer Emergency Response Team (CERT-In) under the Ministry of Electronics and Information Technology has disclosed the discovery of multiple vulnerabilities in Microsoft Edge, specifically the Chromium-Based version. These vulnerabilities have the potential to enable a remote attacker to initiate Denial of Service (DoS) conditions or execute spoofing attacks on the targeted system.
CERT-In emphasizes that these vulnerabilities could be exploited by a remote attacker through the persuasion of a user to open specially crafted content. Successful exploitation might result in Denial of Service (DOS), Remote Code Execution, or spoofing attacks on the targeted system. Users are strongly advised to update their Microsoft Edge browsers to version 119.0.2151.44 or later to mitigate these risks effectively.
Last modified: November 14, 2023