Impact
The vulnerability arises from insufficient policy enforcement in the Passwords module of Google Chrome before version 150.0.7871.47. A remote attacker who has already compromised the renderer process can use a crafted HTML page to read data that normally would be protected by cross‑origin restrictions, leaking confidential information to the attacker. This lack of proper policy enforcement allows the attacker to bypass same‑origin safeguards and obtain cross‑origin data, which could include private user credentials or other sensitive data stored in the renderer.
Affected Systems
All users of Google Chrome whose browser version is earlier than 150.0.7871.47 are affected. The vulnerability exists in all Chrome channels (stable, beta, dev, canary) running those older versions.
Risk and Exploitability
The severity is rated medium in Chromium’s own scoring, but the vulnerability can be exploited once an attacker can gain control over the renderer process, which may be possible through other security flaws. Because EPSS data is not available and the vulnerability is not listed in the CISA KEV catalog, the immediate likelihood of widespread exploitation is unclear. However, once a renderer compromise is achieved, the attacker can covertly collect cross‑origin data without user interaction. The exploit does not require additional conditions beyond a renderer process compromise, making it straightforward for an attacker with that foothold to trigger the data leakage.
OpenCVE Enrichment