The host is installed with Google Chrome before 25.0.1364.152 and is prone to security bypass vulnerability. A flaw is present in the application, which fails to properly manage the interaction between the browser process and renderer processes during authorization of the loading of a plug-in. Successful exploitation could allow attackers to bypass intended access restrictions via vectors involving a blocked plug-in.