Government warns against vulnerabilities in Google Chrome OS

  • 25-09-2022 |
  • Isabella Clark

In a security alert, the Department of Homeland Security's Cybersecurity and Infrastructure Agency (CISA) said that it was aware of "several vulnerabilities" in the open-source operating system.

Google is aware of these vulnerabilities and is currently working on patches," the agency said.

While the agency did not go into detail about the specific vulnerabilities, it did warn that "exploitation of these vulnerabilities could allow an attacker to take control of an affected system."

This is not the first time that the US government has warned about vulnerabilities in Google's Chrome OS.

In November, CISA issued a similar warning about a "high severity" security flaw that could allow an attacker to "execute arbitrary code" on a victim's device.

And in September, the agency warned about a "medium severity" security flaw that could allow an attacker to "spoof" the address bar in the Chrome browser.

While the US government has issued warnings about vulnerabilities in Google's Chrome OS, it is not the only entity to do so.

In October, the UK's National Cyber Security Centre (NCSC) issued a warning about a "serious" security flaw in the operating system.

And in September, security firm CrowdStrike warned that a "critical" security flaw in Chrome OS could allow an attacker to "execute arbitrary code" on a victim's device.