Azur

**Name of the Vulnerable Software and Affected Versions** Google Chrome (affected versions not specified) **Description** A flaw exists in the Downloads component of the Google Chrome browser due to insufficient input validation. Successful exploitation of this issue could allow a remote attacker to disclose sensitive information by using a specially crafted HTML page. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 124.0.6367.60 **Description** The issue is related to insufficient data validation in the Downloads section of Google Chrome, allowing a remote attacker to perform UI spoofing via a crafted HTML page. This could potentially give the attacker access to confidential information. **Recommendations** For versions prior to 124.0.6367.60, update to version 124.0.6367.60 or later to resolve the issue. As a temporary workaround, consider restricting access to the Downloads section until the update is applied. Avoid using crafted HTML pages that could exploit the insufficient data validation in the Downloads section.