Security Advisory
CVE-2025-6556
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Insufficient policy enforcement in Loader in Google Chrome prior to 138.0.7204.49 allowed a remote attacker to bypass content security policy via a crafted HTML page. (Chromium security severity: Low)