Inappropriate implementation in Views in Google Chrome on Windows prior to 142.0.7444.137 allowed a remote attacker who had compromised the renderer process to perform privilege escalation via a crafted HTML page. (Chromium security severity: High)
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.