Opera · Opera · CVE-2015-1254
**Name of the Vulnerable Software and Affected Versions**
Google Chrome versions prior to 43.0.2357.65
Opera (affected versions not specified)
**Description**
The issue allows remote attackers to bypass the Same Origin Policy by leveraging the availability of editing, due to the inheritance of the designMode attribute in the core/dom/Document.cpp file in Blink. This enables attackers to potentially elevate their editing privileges.
**Recommendations**
For Google Chrome versions prior to 43.0.2357.65, update to version 43.0.2357.65 or later to resolve the issue.
For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.