Daniel Baulig

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 124.0.6367.60 Microsoft Edge (affected versions not specified) **Description** The issue is related to an inappropriate implementation in the Networks component, allowing a remote attacker to bypass mixed content policy via a crafted HTML page. This could potentially enable the attacker to access confidential information. The vulnerability is associated with incorrect restriction of displayed layers or frames in the user interface. **Recommendations** For Google Chrome versions prior to 124.0.6367.60, update to version 124.0.6367.60 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.