A high-severity sandbox escape vulnerability in Google Chrome on macOS exposes users to potential system compromise by attackers who have already achieved renderer process control.

This vulnerability involves insufficient validation of untrusted input within the Accessibility feature. An attacker who has already compromised the renderer process can leverage this flaw to perform a sandbox escape and potentially gain elevated privileges on the host system.

With a CVSS score of 8.3, this vulnerability represents a significant risk to organizational endpoints. Successful exploitation could allow an attacker to bypass browser security boundaries, leading to unauthorized code execution, data exfiltration, or further lateral movement within the corporate network.

Immediate Action: Update Google Chrome to version 149.0.7827.115 or later immediately.

Proactive Monitoring: Monitor endpoint logs for abnormal process behavior or unexpected crashes in the Chrome renderer process that may indicate exploitation attempts.

Compensating Controls: Ensure that endpoint protection software is active and updated to detect and block suspicious child process creation originating from the web browser.

Public Exploit Available: false

The severity of this vulnerability, combined with the potential for sandbox escape, necessitates immediate patching. Security teams should prioritize deploying the update to all affected macOS workstations to mitigate the risk of remote code execution.