HIGH 8.3

CVE-2026-10920: Chrome macOS WebShare Sandbox Escape Vulnerability (v149)

A validation flaw in Chrome's WebShare feature on macOS allows an attacker who has already compromised the browser's renderer process to break out of the sandbox through a specially crafted webpage. This is a post-compromise privilege escalation risk—the attacker must first gain code execution within the renderer, but if successful, can gain full system access. Chrome versions before 149.0.7827.53 are affected.

Source data · NVD / CISA · public domain

CVSS
3.1 · 8.3 HIGH · CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
Weaknesses (CWE)
CWE-20
Affected products
2 configuration(s)
Published / Modified
2026-06-04 / 2026-06-17

NVD description (verbatim)

Insufficient validation of untrusted input in WebShare in Google Chrome on Mac prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)

2 reference(s) · View on NVD →

SEC.co analysis · AI-assisted, reviewed against source

Technical summary

CVE-2026-10920 stems from insufficient input validation in the WebShare implementation within Google Chrome on macOS. The vulnerability exists in a component that handles web-based file or data sharing operations. An attacker with renderer-process code execution can supply a malformed input that bypasses sandbox boundaries, leading to arbitrary code execution in the context of the browser process or system. The flaw is classified as CWE-20 (Improper Input Validation), indicating the root cause is inadequate sanitization or type checking before the input is processed by privileged code paths.

Business impact

For most users, this vulnerability poses moderate practical risk because it requires a two-stage attack: first compromising the renderer (through XSS, malicious script injection, or another browser vulnerability), then leveraging the WebShare flaw to escape the sandbox. However, in environments where users visit untrusted content or where other renderer-level vulnerabilities are exploited, this becomes a pathway to complete system compromise. Organizations running macOS fleets with Chrome users should treat this as a privilege-escalation vector that could amplify the impact of other web-based attacks.

Affected systems

Google Chrome on Apple macOS, versions prior to 149.0.7827.53, is directly affected. The vulnerability is specific to macOS; Chrome on Windows and Linux use different sandbox mechanisms and are not impacted. Users on older Chrome versions (148.x and earlier) are at risk if they run macOS. Verify your installed version via chrome://version in the address bar.

Exploitability

Exploitation requires two conditions: (1) the attacker must first achieve code execution within Chrome's renderer process (via XSS, drive-by download, or other renderer exploit), and (2) the attacker must then craft a specific HTML page or WebShare input to trigger the sandbox escape. The attack surface is the WebShare API, which is available to web content. While the initial renderer compromise is necessary, once achieved, the sandbox escape is likely highly reliable given the validation bypass nature of the flaw. CVSS 8.3 reflects the combination of high confidentiality, integrity, and availability impact, balanced by the prerequisite of renderer compromise and user interaction to trigger the initial infection vector.

Remediation

Update Chrome to version 149.0.7827.53 or later on all macOS systems. This patch closes the WebShare input validation flaw. No workarounds exist short of disabling WebShare (which would break legitimate share functionality), so patching is the only effective mitigation. Verify the updated version is running via chrome://version and confirm automatic updates are enabled.

Patch guidance

Google Chrome on macOS will attempt automatic updates; users can force an update check via Menu > About Google Chrome, which triggers immediate download and applies the patch on next restart. Enterprise deployments using managed Chrome (via Jamf, Intune, or similar MDM) should push version 149.0.7827.53 or later immediately. For large organizations, consider staged rollout to validate compatibility, though no compatibility issues with this patch version have been reported. After patching, verify via chrome://version that all instances show version 149.0.7827.53 or later.

Detection guidance

Monitor for Chrome version compliance on macOS systems using endpoint detection tools (Jamf Pro, Kandji, Intune) or vulnerability management platforms. Web-based detection is limited because exploitation would typically occur silently post-renderer-compromise; however, monitor for unusual WebShare API calls in application logs or JavaScript execution patterns. Look for attempts to invoke WebShare with malformed or oversized payloads, or monitor process behavior for unexpected child processes spawning from the Chrome helper process post-WebShare invocation. Indicators of successful exploitation would include unexpected system-level process creation originating from Chrome.

Why prioritize this

Although this CVE is not listed on the CISA Known Exploited Vulnerabilities catalog (KEV=false), the 8.3 CVSS score, HIGH severity designation from Chromium, and the nature of sandbox-escape vulnerabilities mean it should be patched urgently. Sandbox escapes are particularly concerning because they enable post-compromise lateral movement and persistence. Prioritize macOS Chrome users who regularly visit untrusted or high-risk content, and any environments where Chrome is used to access user-generated content or third-party web applications. Patch within 30 days; sooner if you have external-facing web browsing.

Risk score, explained

The CVSS 3.1 score of 8.3 (HIGH) reflects: Attack Vector = Network (remote exploitation possible via webpage), Attack Complexity = High (requires renderer compromise first), Privilege Escalation = Yes (from renderer sandbox to system), Confidentiality = High (full system access), Integrity = High (system modification possible), Availability = High (denial of service or system crash possible). The AC=H factor accounts for the prerequisite renderer compromise, preventing a CRITICAL rating, but the sandbox-escape nature and full system impact justify the HIGH severity.

Frequently asked questions

Do I need to update if I use Chrome in a restrictive sandbox or container?

Yes. While additional sandboxing layers (containers, virtualization) provide defense-in-depth, this vulnerability targets Chrome's own sandbox, which is the primary trust boundary. Patch regardless of deployment model.

Is there any public exploit code for this vulnerability?

No public proof-of-concept or weaponized exploit was identified at the time of publication. However, the simplicity of input validation bypasses means exploitation is straightforward once a renderer compromise is achieved. Patch immediately without waiting for exploit availability.

Do users on Chrome Beta or Dev channels get this patch first?

Yes, Chrome Beta (150.x series) and Dev (151.x series) typically receive patches first. If you test on pre-release channels, verify the fix before rolling to Stable.

What is WebShare and why does my organization need it?

WebShare is a browser API that allows websites to invoke native file-sharing dialogs (e.g., AirDrop, Mail). Most users don't explicitly use it; it's used when a website includes a 'Share' button. Disabling it is not recommended because it breaks legitimate sharing features. Patching is the correct response.

This analysis is based on the CVE record published 2026-06-04 and last modified 2026-06-17. Patch version numbers and affected version ranges must be verified against the official Google Chrome Security Advisory and Apple security bulletins. This vulnerability requires renderer-process compromise as a prerequisite; it is not exploitable through passive web browsing alone. No exploit code is provided or endorsed. Organizations should verify compatibility and perform internal testing before widespread deployment in restricted environments. SEC.co makes no warranty regarding completeness or real-time accuracy of vulnerability intelligence. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).