Jesper Van Den Ende

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 137.0.7151.55 **Description** The issue is related to an inappropriate implementation in BFCache, allowing a remote attacker to potentially obtain user information via a crafted HTML page. **Recommendations** For versions prior to 137.0.7151.55, update to version 137.0.7151.55 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome on Mac versions prior to 105.0.5195.52 Microsoft Edge (affected versions not specified) **Description** The issue is related to an inappropriate implementation of Pointer Lock in Google Chrome and Microsoft Edge browsers. This could allow a remote attacker to restrict user navigation via a crafted HTML page or potentially disclose protected information. **Recommendations** For Google Chrome on Mac versions prior to 105.0.5195.52, update to version 105.0.5195.52 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 71.0.3578.80 **Description** The issue concerns the incorrect handling of 304 status codes in Navigation, allowing a remote attacker to deceive the user about the origin of the current page. This can be achieved via a crafted HTML page. **Recommendations** For versions prior to 71.0.3578.80, update to version 71.0.3578.80 or later to resolve the issue.