Skip to main content
Live Webinar with SANS (June 25)— Agentic CTI Automation for Fun & ProfitRegister Free
Mallory
Back to vulnerabilities
High

Sandbox escape in Google Chrome Accessibility on Windows

IdentifiersCVE-2026-6311CWE-457· Use of Uninitialized Variable

CVE-2026-6311 is a high-severity use of uninitialized variable vulnerability in the Accessibility component of Google Chrome on Windows. It affects Chrome versions prior to 147.0.7727.101. According to the provided content, a remote attacker who has already compromised the sandboxed renderer process can trigger the flaw via a crafted HTML page and potentially escape Chrome's sandbox. The root cause is classified as CWE-457. Public technical detail about the exact vulnerable code path or function is currently not available because the associated Chromium issue is restricted.

Share:
For your environment

Are you exposed to this one?

Mallory correlates every CVE against your assets, your vendors, and active adversary campaigns. Know which vulnerabilities matter for you, not just which ones are loud.

Start free trial
ANALYST BRIEF

Impact, mitigation & remediation

What it means. What to do now. Patch path, mitigations, and the assume-compromise checklist.

Impact

What an attacker gets, and what they’ve been doing with it.

Successful exploitation can cross Chrome's renderer sandbox boundary on Windows. The provided content indicates high impact to confidentiality, integrity, and availability, consistent with the CVSS v3.1 vector AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H. In practical terms, an attacker who already achieved renderer compromise could potentially execute code or otherwise gain control outside the sandbox, enabling broader compromise of the underlying Windows system.

Mitigation

If you can’t patch tonight, do this now.

If immediate patching is not possible, reduce exposure by limiting use of untrusted websites and content, restricting browser use in high-risk workflows, and applying standard browser hardening and endpoint controls to make initial renderer compromise more difficult. Because exploitation requires a prior renderer compromise plus user interaction with crafted web content, mitigations that reduce exposure to malicious pages and block exploit chains may help, but no complete mitigation is provided in the content aside from updating.

Remediation

Patch, then assume compromise.

Update Google Chrome on Windows to version 147.0.7727.101 or later. The provided content also references 147.0.7727.102 as an advised updated version for some desktop channels. Applying the vendor-provided stable channel update is the primary remediation.
PUBLIC EXPLOITS

Exploits

No public exploits tracked yet. Mallory keeps watching.

VALID 0 / 0 TOTALView more in app

No public exploit code observed for this vulnerability.

EXPOSURE SURFACE

Affected products & vendors

Products and vendors Mallory has correlated with this vulnerability. Open in Mallory to drill down to specific CPE configurations and version ranges.

VendorProductType
GoogleChromeapplication

Vendor-confirmed product mapping. Mallory continuously reconciles this list against your asset inventory.

ACTIVITY FEED

Recent activity

7 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.

7 SOURCESView more in app
cvefeed high severityNews
Apr 15, 2026
CVE-2026-6311 - Google Chrome Uninitialized Use Sandbox Escape

A high-severity Google Chrome for Windows vulnerability involving uninitialized use in Accessibility that could allow a remote attacker, after compromising the renderer process, to potentially escape the sandbox via a crafted HTML page.

Read more
chrome releases blogNews
Apr 15, 2026
Chrome Releases: Stable Channel Update for Desktop

A high-severity uninitialized use vulnerability in Accessibility in Google Chrome.

Read more
zeropath blogNews
Apr 15, 2026
Quick Look: CVE-2026-6311, Uninitialized Variable in Google Chrome Accessibility Enables Windows Sandbox Escape - ZeroPath Blog | ZeroPath

A high-severity sandbox escape vulnerability in Google Chrome's Accessibility component on Windows caused by use of an uninitialized variable, allowing an attacker with renderer code execution to break out of the browser sandbox.

Read more
What this page doesn’t show

The version that knows your environment.

This page is what’s public. Mallory adds the parts that aren’t: which of your assets are affected, which adversaries are exploiting it right now, which detections to deploy, and what to do tonight.
Start free trial
Exposure mapping

Query your assets running an affected version, and investigate the blast radius.

Threat actor evidence

Every observed campaign linking this CVE to a named adversary.

Associated malware

Malware families riding this exploit, with evidence and IOCs.

Detection signatures

YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.

Vendor-by-vendor mapping

Cross-references every affected SKU, including bundled OEM variants.

Social activity3

Community discussion across Reddit, Mastodon, and other social sources.

EXTERNAL REFERENCES
MITRE CVE
cve.org · CVE-2026-6311
NVD
nvd.nist.gov/vuln/detail/CVE-2026-6311
MITRE CWE · CWE-457
Use of Uninitialized Variable
Vendor Advisory
chromereleases.googleblog.com/2026/04/stable-channel-update-for-desktop_15.html
Permissions Required
issues.chromium.org/issues/498201025