A high-severity use-after-free vulnerability in Google Chrome on Windows could allow a remote attacker to achieve a sandbox escape through a crafted HTML page.

This use-after-free flaw exists in the password management component of Google Chrome. An unauthenticated attacker who has compromised the browser's renderer process can leverage this vulnerability to escape the sandbox environment.

With a CVSS score of 8.3, this vulnerability poses a significant risk to endpoint security. A successful sandbox escape allows an attacker to break out of the browser's security constraints, potentially leading to unauthorized access to the underlying operating system and user data.

Immediate Action: Update all instances of Google Chrome on Windows to version 148.0.7778.216 or later immediately.

Proactive Monitoring: Monitor endpoint security logs for signs of anomalous browser process crashes or unauthorized attempts to access system-level files from the browser process.

Compensating Controls: Utilize browser-based security policies or managed endpoint configurations to restrict user access to untrusted or malicious websites until patches are applied.

Public Exploit Available: False

Security teams must prioritize updating Google Chrome to the latest version to mitigate the risk of sandbox escape. Regular browser maintenance is essential to maintain the integrity of the browser's security boundary and protect organizational endpoints.