An insecure MediaCapture implementation in Google Chrome on macOS released before version 149.0.7827.103 allows a remote attacker to craft a malicious HTML page that can read data from a cross‑origin context and expose it to the attacker. The flaw effectively results in an Information Exposure vulnerability, enabling the attacker to obtain sensitive information that should be isolated to the original origin. The impact is restricted to confidentiality breach for content accessed through MediaCapture, with no direct denial of service or code execution reported.

This vulnerability affects Apple macOS users running Google Chrome versions earlier than 149.0.7827.103. The affected product is specifically the Chrome browser on Mac, and the safe version threshold is 149.0.7827.103 and later.

The flaw is remotely exploitable via a crafted HTML page, requiring the victim to load the page in Chrome on macOS. The Chromium security severity is listed as High, and the CVSS score of 4.3 indicates moderate severity. Because the EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, the overall risk depends largely on the common‑web presence of the affected browser. An attacker who successfully victimizes a user’s browser can extract confidential data through the MediaCapture interface. No privilege escalation or local execution is required. The lack of EPSS or KEV data means the likelihood of exploitation is unknown, but the High severity rating indicates a serious consequence if the flaw is abused.