CVE-2025-9866
CVE-2025-9866 affects Google Chrome/Chromium: an incorrect implementation in Chrome extensions allows a remote attacker to bypass the content security policy via a crafted HTML page. Impact: CSP bypass; affected component is the Extensions subsystem. Vulnerable versions are Chrome before 140.0.73...