Disclosed Chromium Security Bugs

Service workers allowing redirects to data: URLs.

#379337758Reporter: nd...@protonmail.com
$4,000
10/18/2025

block MSG_OOB in renderer sandbox

#428177287Reporter: aj...@google.com
$0
10/18/2025

DCHECK failure in iterator_.current_offset() == continuation->last_continuation in maglev-graph-bu

#431076739Reporter: 24...@project.gserviceaccount.com
$0
10/18/2025

Debug check failed: IsInBounds(index)

#430344952Reporter: fa...@gmail.com
$8,000
10/18/2025

Security: Chrome Vulnerability Leaves Android One UI Users at Risk of Spoofing Attacks

#40063293Reporter: fa...@gmail.com
$1,000
10/18/2025

CHECK failure: (value & uint64_t{ADDRESS}) != unexpected || (value & uint64_t{ADDRESS}) == uint

#424653424Reporter: 24...@project.gserviceaccount.com
$0
10/18/2025

Download origin spoofing using malformed data url.

#421511847Reporter: x4...@gmail.com
$5,000
10/15/2025

V8 Sandbox Bypass: Arbitrary code execution via interpreter-to-baseline OSR Code type confusion

#429703123Reporter: se...@gmail.com
$20,000
10/15/2025

Permission element inner div with style -webkit-text-stroke-width: thick;font-weight: bolder; can be abused if no element in the parent chain has any -webkit-text-stroke-width: thick;font-weight: bolder; are set.

#429440615Reporter: sa...@gmail.com
$0
10/15/2025

DCHECK failure in (thread_graph_labeller) == nullptr in maglev-graph-labeller.cc

#429645383Reporter: 24...@project.gserviceaccount.com
$0
10/15/2025
Showing 141-150 of 8802 bugs
1...141516...881