Ashwin Agrawal

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 106.0.5249.62 Microsoft Edge (affected versions not specified) **Description** The issue is related to insufficient policy enforcement in custom tabs, which can be exploited by a remote attacker to bypass existing security restrictions and disclose protected information using a specially crafted website. This can occur when an attacker convinces a user to install a malicious application, allowing the attacker to bypass the same origin policy. **Recommendations** For Google Chrome versions prior to 106.0.5249.62, update to version 106.0.5249.62 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.