Description
Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
Published: 2026-06-30
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability arises from an inappropriate implementation in WebAppInstalls, allowing a remote attacker who has already compromised the renderer process to potentially escape the browser sandbox by serving a specially constructed HTML page. The flaw permits the attacker to run code with higher privileges than the renderer process, which could lead to arbitrary code execution on the host system. The weakness corresponds to improper isolation of privileged components and is labeled a Low severity issue by Chromium.

Affected Systems

Applications of concern are Google Chrome browsers running on macOS, specifically versions prior to 150.0.7871.47. Any installation of these legacy releases on a Mac system faces the risk described.

Risk and Exploitability

The EPSS score is not available, and the vulnerability is currently not listed in CISA’s KEV catalog. The attack requires that an attacker first gain a foothold in the renderer process, after which a crafted HTML page can be delivered to trigger the sandbox escape. Due to the low Chromium severity rating, the likelihood of widespread exploitation is considered modest, but the impact of a successful escape remains significant for affected users.

Generated by OpenCVE AI on July 1, 2026 at 09:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome on macOS to version 150.0.7871.47 or newer to contain the WebAppInstalls fix
  • Ensure the browser runs with the latest security updates, enabling automatic update features
  • Limit exposure of the renderer process by disabling or restricting WebAppInstalls functionality if your environment allows configuration changes

Generated by OpenCVE AI on July 1, 2026 at 09:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Wed, 01 Jul 2026 09:45:00 +0000

Type Values Removed Values Added
Title Forged HTML Page Enables Sandbox Escape in Chrome on macOS
Weaknesses CWE-264
CWE-284

Wed, 01 Jul 2026 04:15:00 +0000

Type Values Removed Values Added
Title Forged HTML Page Enables Sandbox Escape in Chrome on macOS
Weaknesses CWE-264
CWE-284

Tue, 30 Jun 2026 23:15:00 +0000

Type Values Removed Values Added
Description Inappropriate implementation in WebAppInstalls in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Low)
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-06-30T22:39:26.015Z

Reserved: 2026-06-29T23:11:41.545Z

Link: CVE-2026-14097

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T10:30:16Z

Weaknesses

No weakness.