Bryant Zadegan

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 51.0.2704.63 Opera (affected versions not specified) **Description** The issue is related to the deletion of HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid certificate from an arbitrary recognized Certification Authority. This occurs in the browser/browsing data/browsing data remover.cc component. **Recommendations** For Google Chrome versions prior to 51.0.2704.63, update to version 51.0.2704.63 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.