ANGLE Vulnerability

HIGH (8.8)
cwe-119anglechromegooglegraphics-librarymacout-of-bounds-memory-accessrce

Threat Intelligence

⚠️ CRITICAL GAP - Exploits exist but no detection available
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: CISA KEV

How we test →

What is it?

The ANGLE (Accelerated Neutral Graphics Link Engine) is a graphics library used by Google Chrome on Mac to render web pages. It allows attackers to perform out of bounds memory access via a crafted HTML page, potentially leading to arbitrary code execution.

Am I affected?

You're affected if you use Out of bounds memory access. Affected versions: 143.0.7499.110

How to fix

  1. Upgrade to Google Chrome 143.0.7499.110 or later from the official Chrome website: https://chrome.google.com/downloads/
  2. Immediate mitigations:
  3. Restrict network access to your Chrome instance (firewall it from the public internet)
  4. Audit browser history for suspicious activity

References