Impact
The vulnerability is a race condition in Chrome’s Safe Browsing subsystem on macOS that can allow a remote attacker who has already compromised the renderer process to escape the sandbox through a specially crafted HTML page. This race condition can lead to uncontrolled execution of code outside the sandbox, effectively resulting in local privilege escalation or remote code execution, depending on the context. The flaw is identified as CWE-362 and CWE-368.
Affected Systems
Affected systems are Google Chrome browsers running on macOS with versions prior to 149.0.7827.155. The issue stems from the Safe Browsing implementation and is specific to the macOS build of Chrome. No other vendors or products are listed as impacted.
Risk and Exploitability
The CVSS score of 8.3 indicates a high-risk flaw while the EPSS score of less than 1% suggests that exploitation may be rare. The flaw is not in CISA’s KEV catalog, so no publicly known exploits are listed. It is identified as CWE‑362 (Race Condition) and CWE‑368 (Operation With Unusual Precondition). The likely attack vector requires the attacker to first gain remote code execution or significant control within the renderer process, which is difficult but not impossible. Once that condition is met, the race in Safe Browsing can be triggered by loading adversarial content to escape the sandbox.
OpenCVE Enrichment
Debian DSA