Uwu7586

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 99.0.4844.51 Microsoft Edge (affected versions not specified) **Description** The issue is related to an out of bounds memory access in the WebXR component, which can potentially lead to heap corruption. A remote attacker could exploit this via a crafted HTML page, potentially causing a denial of service. **Recommendations** For Google Chrome versions prior to 99.0.4844.51, update to version 99.0.4844.51 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 97.0.4692.99 Microsoft Edge (affected versions not specified) **Description** The issue is related to an inappropriate implementation in the Service Worker API, allowing a remote attacker who has compromised the renderer process to bypass site isolation. This can be achieved via a crafted HTML page. The vulnerability may also allow a remote attacker to execute arbitrary code. **Recommendations** For Google Chrome versions prior to 97.0.4692.99, update to version 97.0.4692.99 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.