Disclosed Chromium Security Bugs

Heap-use-after-free in ShortcutsBackend::AddOrUpdateShortcut

#393404266Reporter: 24...@project.gserviceaccount.com
$0
5/12/2025

WasmCode "resurrection" using the WasmImportWrapperCache can lead to JIT allocation UaF, causing memory corruption

#391907159Reporter: ma...@popax21.dev
$55,000
5/10/2025

V8 Sandbox Bypass: UAF in ValueSerializer::WriteRawBytes

#392541992Reporter: v8...@gmail.com
$5,000
5/10/2025

URL Spoof via intent

#329890199Reporter: nd...@protonmail.com
$0
5/10/2025

UAF in chrome::CloseAllBrowsers() with popin

#388400226Reporter: ha...@gmail.com
$1,000
5/10/2025

Segv on unknown address in v8::internal::GlobalizeTracedReference

#393170056Reporter: 24...@project.gserviceaccount.com
$0
5/10/2025

V8 correctness failure in sources: 18

#392660676Reporter: 24...@project.gserviceaccount.com
$0
5/10/2025

ffmpeg:ffmpeg_dem_MOV_fuzzer: Use-of-uninitialized-value in ff_data_to_hex

#394990189Reporter: 87...@developer.gserviceaccount.com
$0
5/9/2025

Information Leak via Out-of-Bounds Read in media::AudioBuffer

#392375312Reporter: bl...@gmail.com
$2,000
5/9/2025

V8 Sandbox Bypass: Potential memory corruption due to BytecodeGenerator asyncness inconsistency

#390993097Reporter: se...@gmail.com
$5,000
5/9/2025
Showing 1971-1980 of 10189 bugs
1...197198199...1019