CVE-2026-9902: Chrome Accessibility Sandbox Escape (Use-After-Free)
A use-after-free memory bug in Google Chrome's accessibility features could allow an attacker to escape the browser's sandbox if they first compromise the renderer process. The vulnerability affects Chrome versions before 148.0.7778.216 and requires the attacker to trick a user into visiting a crafted webpage. While the initial compromise of the renderer process is a significant prerequisite, successfully exploiting this flaw could grant an attacker system-level access beyond the browser's normal restrictions.
Source data · NVD / CISA · public domain
- CVSS
- 3.1 · 8.3 HIGH · CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
- Weaknesses (CWE)
- CWE-416
- Affected products
- 1 configuration(s)
- Published / Modified
- 2026-05-28 / 2026-06-17
NVD description (verbatim)
Use after free in Accessibility in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: High)
2 reference(s) · View on NVD →
SEC.co analysis · AI-assisted, reviewed against source
Technical summary
CVE-2026-9902 is a use-after-free vulnerability (CWE-416) in the Accessibility subsystem of Google Chrome. The flaw exists in versions prior to 148.0.7778.216 and permits a remote attacker with a compromised renderer process to achieve sandbox escape through a specially crafted HTML page. The Chromium security team has classified this as High severity. The vulnerability requires user interaction (visiting a malicious webpage) and assumes the renderer process is already compromised, making it part of a multi-stage attack chain. Successful exploitation could result in arbitrary code execution at the system level, bypassing Chrome's process isolation model.
Business impact
Organizations relying on Chrome as their primary browser face elevated risk if users visit untrusted websites or if renderer-process vulnerabilities are actively exploited in the wild. A sandbox escape could allow attackers to access sensitive data, install malware, or pivot to other systems on the corporate network. The vulnerability is particularly concerning in environments where Chrome is used to access high-value applications or where renderer-process exploits are already circulating. Companies should prioritize patching to maintain the integrity of their browser-based security boundaries.
Affected systems
Google Chrome versions prior to 148.0.7778.216 are vulnerable. All platforms running affected Chrome versions—including Windows, macOS, and Linux—are at risk. Users should verify their installed Chrome version against the fixed release. Chrome's auto-update mechanism typically deploys patches within hours or days, but organizations with update controls should manually verify deployment.
Exploitability
Exploitation requires two conditions: first, compromise of the Chrome renderer process (via a separate renderer-process vulnerability or attack), and second, user interaction to visit a crafted HTML page. While the barrier to entry is moderate due to the renderer-process prerequisite, the payload is within reach of sophisticated threat actors. The vulnerability does not appear on the CISA Known Exploited Vulnerabilities (KEV) catalog, suggesting limited or no confirmed in-the-wild exploitation as of the publication date, though organizations should monitor for changes to this status.
Remediation
Update Google Chrome to version 148.0.7778.216 or later immediately. Chrome's built-in update mechanism should deliver this patch automatically; users can accelerate this by restarting the browser or manually checking for updates via the menu. Organizations with centralized Chrome management should deploy the patched version through their endpoint management tools. No workarounds exist for the underlying code defect.
Patch guidance
Verify that Chrome has updated to 148.0.7778.216 or a later stable release. Check the version via Chrome menu > About Google Chrome (which will also trigger any pending update). For managed environments, confirm that the patch has been distributed to all endpoints. Monitor Chrome's release notes and security updates page for any subsequent patches addressing related accessibility features. If using Chrome Enterprise, leverage your MDM/EMM solution to enforce the minimum version requirement across your fleet.
Detection guidance
Monitor for Chrome processes running versions prior to 148.0.7778.216 using endpoint detection and response (EDR) tools or vulnerability management platforms. Network-based detection of in-the-wild exploitation is challenging without renderer-process vulnerability signatures; focus on endpoint-level version inventory. If a renderer-process exploit is active in your environment, treat any subsequent unusual process behavior, privilege elevation, or system modification on machines that visited untrusted sites as a potential sandbox-escape attempt. Log review should focus on elevated privilege creation and unusual child-process spawning from Chrome or related system processes.
Why prioritize this
This vulnerability merits immediate attention because successful exploitation grants system-level code execution by breaking Chrome's sandbox isolation. While the renderer-process requirement raises the bar for exploitation, the sandbox-escape component is the critical differentiator—it transforms a browser compromise into a system compromise. The CVSS score of 8.3 (HIGH) reflects the severity of the impact. Organizations should treat patching as a critical priority, particularly if renderer-process exploits are known to be active or if users frequently visit untrusted content.
Risk score, explained
The CVSS 3.1 score of 8.3 reflects a High-severity vulnerability with network-based attack vector, high attack complexity (due to the renderer-process prerequisite), no privilege requirement, user interaction, and changed scope—all leading to high impact on confidentiality, integrity, and availability. The score appropriately captures the severity of a sandbox escape, which can fully compromise a system despite the prerequisite nature of renderer-process compromise.
Frequently asked questions
Does this vulnerability affect all Chrome users?
All users running Chrome versions before 148.0.7778.216 are potentially vulnerable if their renderer process is already compromised. However, the attack requires a two-stage compromise: first, an attacker must compromise the renderer process (via a separate vulnerability), and second, they must trick the user into visiting a crafted webpage. If neither of these conditions is met, the vulnerability poses no immediate risk.
Is this vulnerability actively exploited in the wild?
No. As of the publication date, this vulnerability does not appear on the CISA Known Exploited Vulnerabilities (KEV) list, which suggests limited or no confirmed active exploitation in the wild. However, you should monitor CISA's KEV catalog and threat intelligence feeds for any changes to this status, as sophisticated threat actors may exploit this after patching delays.
What should I do if I cannot patch immediately?
Immediately update Chrome to 148.0.7778.216 or later—there is no reason to delay, as the patch is readily available and the auto-update mechanism is reliable. If update is genuinely blocked for technical reasons, restrict user access to untrusted websites and monitor your network for signs of renderer-process exploitation (unusual process behavior, privilege escalation). However, patching is the only real mitigation.
Why does this vulnerability require renderer-process compromise first?
The vulnerability itself is a use-after-free in the Accessibility subsystem. An attacker must already have code running in the renderer process to trigger the flaw via a crafted HTML page. This two-stage requirement makes this part of an exploit chain, but the sandbox-escape payload is what makes it critical—it elevates a browser compromise to a system compromise.
This analysis is based on publicly available vulnerability data as of the publication date. No exploit code or weaponized proof-of-concept details are provided. Organizations should verify patch availability and applicability against their specific Chrome deployment and consult Google's official security advisory for authoritative guidance. CVSS scores, KEV status, and affected product versions are derived from the source data provided and should be cross-referenced with official vendor advisories. This vulnerability analysis does not constitute legal advice or compliance guidance specific to any regulation or standard. Source: NVD (public-domain), retrieved 2026-07-07. Analysis generated by SEC.co (claude-haiku-4-5).
Related vulnerabilities
- CVE-2026-10000HIGHChrome Sandbox Escape via Use-After-Free in Password Handling
- CVE-2026-10001HIGHChrome Sandbox Escape via PerformanceManager Use-After-Free
- CVE-2026-10002HIGHGoogle Chrome PDFium Use-After-Free Vulnerability (CVSS 8.8)
- CVE-2026-10003HIGHChrome Use-After-Free Code Execution Vulnerability Analysis
- CVE-2026-10005HIGHChrome macOS Use-After-Free RCE Vulnerability (7.5 CVSS)
- CVE-2026-10007HIGHChrome Use-After-Free in SVG Arbitrary Code Execution (CVSS 8.8)
- CVE-2026-10012HIGHChrome Skia Use-After-Free Sandbox Escape (v148.0.7778.216)
- CVE-2026-10013HIGHUse-After-Free in Chrome WebCodecs – Patch Guide & Risk Assessment