Impact
Insufficient validation of untrusted input in the Accessibility module of Google Chrome for macOS allows a remote attacker who has already compromised the renderer process to potentially escape the renderer sandbox and execute code at the system level. The weakness is an input validation flaw (CWE-20) and a security misconfiguration affecting accessibility features (CWE-1286), and because it enables a sandbox escape, it carries the high risk of compromising the entire host environment. The attacker can construct a malicious HTML page that, when processed by the vulnerable renderer, triggers the escape path, enabling arbitrary code execution.
Affected Systems
Google Chrome on macOS running a version prior to 149.0.7827.115 is impacted. All users with an older stable channel build are potentially vulnerable if they encounter a crafted HTML page within a compromised renderer.
Risk and Exploitability
The vulnerability is classified as High, with a CVSS score of 8.3. An EPSS score of 0.00236 (<1%) indicates a very low probability of exploitation. The absence of a KEV listing suggests it has not yet been widely observed in the wild. The likely attack vector is a remote attacker who has succeeded in compromising the renderer process; once that initial foothold is achieved, crafted HTML can trigger the sandbox escape attempt. Organizations should treat this as a high-risk issue requiring immediate remediation.
OpenCVE Enrichment
Debian DSA