Sandbox Escape Vulnerability in Google Chrome
CVE-2024-7017

Currently unrated

Key Information:

Vendor: Google
Status: Chrome
Vendor: CVE Published:; 14 November 2025

What is CVE-2024-7017?

A vulnerability in Google Chrome's DevTools, found prior to version 126.0.6478.182, could allow remote attackers to escape the confines of a sandbox through crafted HTML content. This could potentially enable unauthorized access to sensitive data or system resources, posing a significant risk to users who interact with malicious web pages. Properly updating the browser is essential to mitigate any exploitation attempts related to this flaw.

Affected Version(s)

Chrome 126.0.6478.182

References

https://chromereleases.googleblog.com/2024/07/stable-chan...

https://issues.chromium.org/issues/338248595

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2025
Vulnerability Reserved
Jul 23, 2024

JSON