windows sandbox escape

The Windows sandbox escape tag covers vulnerabilities and exploits that allow an attacker to break out of a sandboxed environment on Windows, typically in browsers like Chrome. A key example is CVE-2026-7344, a critical use-after-free flaw in Chrome's Accessibility component on Windows before version 147.0.7727.138, which could enable sandbox escape after compromising the renderer. Discussions emphasize that such bugs highlight security risks in less visible subsystems and stress the importance of updating Chrome and auditing Chromium-based browsers to mitigate these threats.