Ashish Arun Dhone

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 95.0.4638.69 Microsoft Edge (affected versions not specified) **Description** The issue is related to insufficient data validation in the New Tab Page component of the browsers. This can be exploited by a remote attacker using a specially crafted web page, potentially allowing the execution of arbitrary code. The attacker can inject arbitrary scripts or HTML in a new browser tab. **Recommendations** For Google Chrome versions prior to 95.0.4638.69, update to version 95.0.4638.69 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.