A high-severity vulnerability in Google Chrome on macOS allows local attackers to escape the browser sandbox via crafted input, potentially leading to arbitrary code execution.

The issue involves insufficient validation of untrusted input in the Downloads component of Chrome. An attacker can exploit this to perform a sandbox escape by executing a malicious AppleScript command with higher privileges than the browser sandbox allows.

With a CVSS score of 8.6, this vulnerability poses a significant risk to user workstations. If successfully exploited, an attacker could break out of the browser sandbox to execute arbitrary code on the underlying macOS system, potentially compromising user credentials and sensitive enterprise data.

Immediate Action: Update Google Chrome to version 149.0.7827.53 or later immediately.

Proactive Monitoring: Monitor endpoint security logs for suspicious AppleScript execution or unusual child processes spawned by the Google Chrome application.

Compensating Controls: Ensure macOS security settings (such as Gatekeeper and System Integrity Protection) are active and configured to prevent unauthorized execution of unsigned scripts.

Public Exploit Available: false

Browser sandbox escapes are high-value targets for attackers. Organizations should ensure that all instances of Google Chrome on macOS are updated immediately to version 149.0.7827.53 to maintain the integrity of workstation security.