Mastersplinter

**Name of the Vulnerable Software and Affected Versions** Google Chrome on iOS versions prior to 131.0.6778.69 **Description** The issue is related to insufficient policy enforcement in the Navigation component of Google Chrome on iOS. This allows a remote attacker to perform privilege escalation via a series of UI gestures. The severity of this issue is medium. **Recommendations** For Google Chrome on iOS versions prior to 131.0.6778.69, update to version 131.0.6778.69 or later to resolve the issue. As a temporary workaround, consider restricting access to the Navigation component until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 130.0.6723.58 Microsoft Edge (affected versions not specified) **Description** The issue is related to an inappropriate implementation in WebAuthentication, allowing a local attacker to perform privilege escalation via a crafted HTML page. This could potentially impact a significant number of devices, although the exact number is not specified. The severity of this issue is classified as Medium by Chromium. **Recommendations** For Google Chrome versions prior to 130.0.6723.58, update to version 130.0.6723.58 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.