Description
Use after free in Device Trust in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
Published: 2026-06-04
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A use‑after‑free flaw in the Device Trust component of Google Chrome on macOS allows an attacker who has already compromised the renderer process to craft an HTML page that targets freed memory. The flaw can lead to a sandbox escape, providing the attacker potential control over the system beyond the renderer’s restricted privileges. This vulnerability carries the standard Medium severity rating in Chromium’s assessment but poses a serious risk due to the possibility of privilege escalation.

Affected Systems

All users of Google Chrome on macOS running versions prior to 149.0.7827.53 are affected, regardless of installation type. The vulnerability is specific to the Device Trust feature in older Chrome releases.

Risk and Exploitability

The CVSS score is not explicitly provided, but the exploitation path requires the attacker to compromise the renderer process, which is generally achievable through malicious web content. The EPSS score is unavailable, and the vulnerability is not listed in CISA’s KEV catalog. The attack vector is inferred to be remote, via a crafted HTML page delivered over the network to a victim’s browser. Given the potential for sandbox escape, the risk remains significant until the issue is patched.

Generated by OpenCVE AI on June 5, 2026 at 02:12 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Chrome update (149.0.7827.53 or newer) as released by Google.
  • If an immediate update is not feasible, consider disabling JavaScript or restricting privileged rendering processes as a temporary containment measure, noting that this may impair browsing functionality.
  • Continuously monitor for irregular renderer process behavior and ensure that sandboxing mechanisms remain active and properly configured.

Generated by OpenCVE AI on June 5, 2026 at 02:12 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 05 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Title Use‑After‑Free in Chrome Device Trust Enabling Sandbox Escape on macOS

Thu, 04 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Use after free in Device Trust in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Medium)
Weaknesses CWE-416
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-04T23:05:05.122Z

Reserved: 2026-06-04T17:06:53.384Z

Link: CVE-2026-11114

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-04T23:17:17.060

Modified: 2026-06-04T23:17:17.060

Link: CVE-2026-11114

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-05T02:15:29Z

Weaknesses