Insufficient policy enforcement in Extensions API in Google Chrome prior to 111.0.5563.64 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension. (Chromium security severity: Medium) CREATE(Triage):(User=admin) CVE-2023-1221 (https://nvd.nist.gov/vuln/detail/CVE-2023-1221)