ThreatLevelBeta
Fix Soon

CVE-2026-7344

Local Privilege Escalation in Google Chrome
Loading...

Summary

Use after free in Accessibility in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium classified the issue as Critical.

Why Fix Soon?

5/6
No authentication required
Mixed internet / internal deployment
User interaction unknown (assumed none)
Exploitable in default configuration
No active exploitation or PoC
High impact vulnerability

Exploitation Details

Type
LPE
Is exploitable with default configuration?
Yes
Is authentication needed?
No
PoC / Exploit
No
Impact

Escape the Chrome renderer sandbox on Windows and execute code with higher browser privileges.

Privilege Escalation
Exploitation Requirements

None — vulnerable in default configuration

Exploitation Process

An attacker delivers a crafted HTML page to a vulnerable Chrome instance on Windows. The page drives the browser into the Accessibility code path and triggers the use-after-free condition. If the attacker already has control of the renderer process, the memory corruption can be turned into a sandbox escape and code execution outside the renderer sandbox.

Detection Resources
Manual Detection
0
Script Detection
0
Scanner Detection
0

Affected Software

Vendor:Google
ProductAffected Versions
Google Chromeprior to 147.0.7727.138 on Windows
Description

Web browser for accessing websites, web apps, and browser-based content.

Deployment:Mixed (internet/internal)
|
Protocol:HTTP/HTTPS
|
Ports:80, 443
Affected ComponentAccessibility routines in Google Chrome on Windows, used by the browser's assistive technology code path.

Accessibility routines in Google Chrome on Windows, used by the browser's assistive technology code path.

Enterprise UsageEstimated likelihood that this vendor/product is deployed in enterprise environments. AI-generated estimation based on market presence, product type and adoption signals — not exact data.
Very Low
Low
Medium
High
Very High
Vendor Size:Big
Remediation
Workaround

Not available

Patch

Not available

Update

Upgrade Google Chrome on Windows to 147.0.7727.138 or later.

chromereleases.googleblog.com
Threat Intelligence
EPSS data unavailable
CISAKEV
CISA KEV
Not Listed
Active Exploitation
No Evidence
Threat Actors

No known threat actors

Detection Rules

No detection rules available

NVD Data

Published: Loading...Modified: Loading...

Description Summary

Use after free in Accessibility in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. (Chromium security severity: Critical)

CVSS Base Score

CWE:CWE-416 Use After Free
|
NVD:CVE-2026-7344
|
Version From:
|
Version Upto:

Sources

3
SourceArticle
chromereleases.googleblog.comChrome Releases: Stable Channel Update for Desktop
www.heise.deCritical vulnerabilities in Chrome and Firefox closed
www.securityweek.comChrome 147, Firefox 150 Security Updates Rolling Out

Priority History

Fix SoonLoading...

Initial analysis