A heap buffer overflow in Google Chrome on Android poses a significant risk of sandbox escape and potential privilege escalation for malicious actors.

The vulnerability is a heap buffer overflow within the GPU process. Exploitation requires a prior compromise of the renderer process, which could subsequently lead to a sandbox escape, increasing the attacker's privileges beyond the standard renderer constraints.

With a CVSS score of 8.3, this flaw is categorized as high severity. Successful exploitation could allow an attacker to break out of the browser sandbox, potentially leading to unauthorized access to sensitive user data or device compromise. This poses a severe risk to organizational mobile device security and corporate data integrity.

Immediate Action: Update all instances of Google Chrome on Android to version 149.0.7827.103 or later immediately.

Proactive Monitoring: Monitor device security logs for anomalous application crashes or unexpected GPU process behaviors that may indicate exploitation attempts.

Compensating Controls: Ensure that mobile device management (MDM) policies are strictly enforced to restrict unauthorized application installations and enforce regular security patching schedules.

Public Exploit Available: false

Given the potential for sandbox escape and privilege escalation, this vulnerability must be treated with high urgency. Administrators should prioritize deploying the patched version 149.0.7827.103 across all managed Android devices to mitigate the risk of remote code execution and unauthorized system access.