New Delhi, April 3 (IANS) The Indian Computer Emergency Response Team (CERT-In), which comes under the Ministry of Electronics & Information Technology, on Wednesday warned users of multiple vulnerabilities in Android and Mozilla Firefox web browsers which could allow an attacker to obtain sensitive information, execute arbitrary code and cause Denial-of-Service conditions on the targeted system.
As per the advisory, ‘Android 12, 12L, 13, 14’, and ‘Mozilla Firefox versions prior to 124.0.1 and Mozilla Firefox ESR versions before 115.9.1’ are the affected software versions, respectively.
“Successful exploitation of these vulnerabilities could allow the attacker to obtain sensitive information, gain elevated privileges and cause a denial-of-service condition on the targeted system,” said the CERT-In advisory.
In Android, these vulnerabilities exist due to flaws in the Framework, System, MediaTek components, Widevine, Qualcomm components and Qualcomm closed-source components.
In Mozilla Firefox, these vulnerabilities exist due to out-of-bounds access via Range Analysis bypass and Privileged JavaScript Execution via Event Handlers.
The cyber agency advised users to apply appropriate updates when available.
Meanwhile, CERT-In has warned users of vulnerability in Apple products such as iPhones, MacBooks, iPads, and others.
According to the cyber agency, a remote attacker could exploit this vulnerability by persuading a victim to visit specially-crafted request.
This vulnerability exists in Apple Products due to out-of-bounds write issues in WebRTC and CoreMedia, it added.
–IANS
shs/rad
Disclaimer
The information contained in this website is for general information purposes only. The information is provided by TodayIndia.news and while we endeavour to keep the information up to date and correct, we make no representations or warranties of any kind, express or implied, about the completeness, accuracy, reliability, suitability or availability with respect to the website or the information, products, services, or related graphics contained on the website for any purpose. Any reliance you place on such information is therefore strictly at your own risk.
In no event will we be liable for any loss or damage including without limitation, indirect or consequential loss or damage, or any loss or damage whatsoever arising from loss of data or profits arising out of, or in connection with, the use of this website.
Through this website you are able to link to other websites which are not under the control of TodayIndia.news We have no control over the nature, content and availability of those sites. The inclusion of any links does not necessarily imply a recommendation or endorse the views expressed within them.
Every effort is made to keep the website up and running smoothly. However, TodayIndia.news takes no responsibility for, and will not be liable for, the website being temporarily unavailable due to technical issues beyond our control.
For any legal details or query please visit original source link given with news or click on Go to Source.
Our translation service aims to offer the most accurate translation possible and we rarely experience any issues with news post. However, as the translation is carried out by third part tool there is a possibility for error to cause the occasional inaccuracy. We therefore require you to accept this disclaimer before confirming any translation news with us.
If you are not willing to accept this disclaimer then we recommend reading news post in its original language.
