Vulnnoob

**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 128.0.6613.84 Microsoft Edge versions prior to 128.0.6613.84 **Description** The issue is related to insufficient data validation in the installer, which can be exploited by a local attacker to perform privilege escalation via a crafted symbolic link. This can potentially allow an attacker to elevate their privileges using a specially crafted link. **Recommendations** For Google Chrome versions prior to 128.0.6613.84, update to version 128.0.6613.84 or later to resolve the issue. For Microsoft Edge versions prior to 128.0.6613.84, update to version 128.0.6613.84 or later to resolve the issue. As a temporary workaround, consider restricting the use of the installer until a patch is available.

Name of the Vulnerable Software and Affected Versions: Google Chrome versions prior to 128.0.6613.84 Microsoft Edge (affected versions not specified) Description: The issue is related to insufficient data validation in the installer, which can be exploited by a local attacker to perform privilege escalation via a crafted symbolic link. This can be achieved with a specially crafted link. Recommendations: For Google Chrome versions prior to 128.0.6613.84, update to version 128.0.6613.84 or later to resolve the issue. For Microsoft Edge, at the moment, there is no information about a newer version that contains a fix for this vulnerability.