Svyat Mitin

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 74.0.3729.108 **Description** The issue is related to insufficient data validation in developer tools, which can be exploited to compromise data integrity, gain unauthorized access to protected information, and cause a denial of service. A local attacker can execute arbitrary code via a crafted string copied to the clipboard. **Recommendations** For versions prior to 74.0.3729.108, update to version 74.0.3729.108 or later to resolve the issue. As a temporary workaround, consider disabling the use of developer tools until a patch is applied. Restrict access to sensitive information and clipboard functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 62.0.3202.62 Opera (affected versions not specified) **Description** The issue is related to Insufficient Policy Enforcement in Devtools remote debugging, allowing a remote attacker to obtain access to remote debugging functionality via a crafted HTML page. This is also referred to as a Referer leak. **Recommendations** For Google Chrome versions prior to 62.0.3202.62, update to version 62.0.3202.62 or later to resolve the issue. For Opera, at the moment, there is no information about a newer version that contains a fix for this vulnerability.