Impact
A use‑after‑free condition (CWE‑416) in Chrome’s Autofill logic on macOS triggers a heap corruption when a crafted HTML page is loaded. The corrupted heap can overwrite control structures, potentially allowing an attacker to execute arbitrary code. The flaw also involves improper permission handling (CWE‑825), which could further weaken defenses.
Affected Systems
All users running Google Chrome on macOS versions prior to 149.0.7827.115 are impacted. The vulnerability resides only in the Chrome browser; other browsers and the operating system are not affected.
Risk and Exploitability
The CVSS score of 8.8 indicates high severity. EPSS is listed as <1%, implying a low likelihood of exploitation seen in the wild. No public exploit has been reported in the CISA KEV catalog. Exposing the flaw requires an attacker to serve a malicious web page that the victim visits, so patching remains a priority.
OpenCVE Enrichment
Debian DSA