Description
Insufficient data validation in InterestGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
Published: 2026-05-06
Score: 8.3 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The flaw lies in the data validation performed by the InterestGroups component of Google Chrome. Because the browser accepts insufficiently sanitized input, a renderer process that has already been compromised can use a crafted HTML page or web content to escape the process sandbox. The result is a privilege‑escalation scenario where the attacker can execute code with higher privileges and compromise the integrity of the host system.

Affected Systems

The vulnerability affects versions of Chrome older than 148.0.7778.96. No specific operating‑system version list is provided beyond the Chrome product, but the flaw is present across all platforms where Chrome runs, as indicated by the manufacturer‑agnostic CPE entries.

Risk and Exploitability

With a CVSS score of 8.3 and an EPSS of < 1%, the risk of exploitation remains moderate but non‑negligible. The vulnerability is not recorded in CISA’s KEV catalog, suggesting no known active exploitation. However, an attacker requires an initial renderer compromise, typically achieved through malicious web content, after which the sandbox escape can be performed. The high severity and potential for system compromise make this flaw a priority for remediation.

Generated by OpenCVE AI on May 9, 2026 at 03:44 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Google Chrome to version 148.0.7778.96 or later.
  • Disable or harden InterestGroups handling by configuring Chrome policies or disabling the feature to mitigate the CWE‑20 input validation weakness.
  • Enforce strict operating‑system sandboxing and isolate the renderer process to contain any potential escape attempts.

Generated by OpenCVE AI on May 9, 2026 at 03:44 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Debian DSA Debian DSA DSA-6250-1 chromium security update
History

Sat, 09 May 2026 00:15:00 +0000

Type Values Removed Values Added
Title Chrome Sandbox Escape via InterestGroups Data Validation Flaw chromium-browser: Insufficient data validation in InterestGroups
Weaknesses CWE-501
References
Metrics threat_severity

None

 threat_severity

Important

Fri, 08 May 2026 22:30:00 +0000

Type Values Removed Values Added
Title Chrome Sandbox Escape via InterestGroups Data Validation Flaw

Fri, 08 May 2026 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-20

Thu, 07 May 2026 04:15:00 +0000

Type Values Removed Values Added
Title Insufficient Data Validation in Chrome InterestGroups Leading to Sandbox Escape

Thu, 07 May 2026 01:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-285
CWE-79

Thu, 07 May 2026 00:00:00 +0000

Type Values Removed Values Added
Title Insufficient Data Validation in Chrome InterestGroups Leading to Sandbox Escape
Weaknesses CWE-285
CWE-79

Wed, 06 May 2026 23:45:00 +0000

Type Values Removed Values Added
First Time appeared Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Apple
Apple macos
Linux
Linux linux Kernel
Microsoft
Microsoft windows

Wed, 06 May 2026 23:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 06 May 2026 22:30:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 8.3, 'vector': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H'}

Wed, 06 May 2026 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google chrome
Vendors & Products Google
Google chrome

Wed, 06 May 2026 18:30:00 +0000

Type Values Removed Values Added
Description Insufficient data validation in InterestGroups in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
References

Subscriptions

Apple Macos
Google Chrome
Linux Linux Kernel
Microsoft Windows
cve-icon MITRE

Status: PUBLISHED

Assigner: Chrome

Published:

Updated: 2026-05-08T19:47:59.359Z

Reserved: 2026-05-05T22:59:08.472Z

Link: CVE-2026-7916

cve-icon Vulnrichment

Updated: 2026-05-06T20:41:05.447Z

cve-icon NVD

Status : Modified

Published: 2026-05-06T19:16:39.880

Modified: 2026-05-08T20:16:32.520

Link: CVE-2026-7916

cve-icon Redhat

Severity : Important

Publid Date: 2026-05-05T00:00:00Z

Links: CVE-2026-7916 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-05-09T03:45:03Z

Weaknesses