The host is missing a high severity security update according to the Google advisory and is prone to a heap buffer overflow vulnerability. A flaws is present in the application, which fails to properly handle unspecified vectors. Successful exploitation allows a remote attacker to potentially perform a sandbox escape via a crafted HTML page.