The Indian Computer Emergency Response Team (CERT-In) under the IT Ministry has issued a high-severity warning for microsoft edge browser user. The warning is for users who are using a version of the browser earlier than 99.0.1150.30. According to the warning, several vulnerabilities have been reported edge browser It can be exploited by the attacker to compromise the target system.
The advisory further states that “these vulnerabilities exist in Microsoft”. Edge Because of heap buffer overflow in angle, use-after-free in cast UI, use-after-free in omnibox, out of read range in angle, use-after-free in views, use-after-free in webshare, in blink layout Type confusion, Use-after-free in media, Out of bounds of memory access in Mojo, Use-after-free in MediaStream, Insufficient policy enforcement in Installer, Heap buffer overflow in Cast UI, Improper implementation in HTML parser, Full screen Improper implementation in mode, Improper implementation in permissions, free after use in browser switcher, data leak in canvas, improper implementation in autofill, free after use in Chrome OS shell and memory access out of bounds in WebEXR.
An attacker can exploit these vulnerabilities by sending a specially crafted request. Successful exploitation of these vulnerabilities could allow an attacker to compromise a target system.
What users can do to stay safe
To avoid any exploits, CERT-In advises Microsoft Edge users to update the browser to the latest version. Version 99.0.1150.39 was rolled out by the tech giant last week and includes the latest security updates Chromium Project. The update also includes fixes for various bugs and performance issues.
According to StatCounter, Edge is now used on 9.54% of desktops worldwide, which is behind Apple’s Safari with a 9.84% market share. The data also shows that Google Chrome still holds the largest market share with 65.38% users. Edge has seen significant growth since the launch of the new Windows OS.