Disclosed Chromium Security Bugs
←Back to DashboardPotential UAF via cross-thread data race on demuxer_stream_ in MediaFoundationStreamWrapper
$0
7/10/2026
Maglev: unsound node replacement when inlining can lead to exploitable write barrier omission
$55,000
7/10/2026
Uninitialized heap memory disclosure in OpenH264 encoder via oversized frames
$0
7/10/2026
UAF in Metal LibraryCache
$16,000
7/10/2026
Potential Browser RCE via Type Confusion in BrowserAccessibilityComWin::get_hyperlink
$0
7/10/2026
Site Isolation bypass via missing frame gate in LCPCriticalPathPredictorHost
$0
7/10/2026
UXSS via Service Worker ID Collision in Synthetic Responses
$0
7/10/2026
Off-thread cppgc::Persistent destruction in RTCRtpSender leads to heap corruption
$0
7/10/2026
Potential Use-after-free in WebRtcAudioDeviceImpl::RenderData during WebRTC teardown
$0
7/10/2026
Cross-origin Autofill data leak via TimestampedSameOriginQueue origin check bypass
$0
7/10/2026