Disclosed Chromium Security Bugs

Missing origin verification for Federation-RP-Connection-Status header

#497269716Reporter: vm...@google.com
$0
7/8/2026

Use-After-Free in slim_web_view's AttachIframeGuest via reentrant destroyContainer

#497135482Reporter: vm...@google.com
$0
7/8/2026

Site Isolation bypass via missing descendant check in AnnotatedPageContent extraction

#497014021Reporter: vm...@google.com
$0
7/8/2026

Potential background access restriction bypass via SmartCardService state inconsistency

#497079979Reporter: rj...@google.com
$0
7/8/2026

Potential fenced frame isolation bypass in WebView via StorageAccessHandle

#497385349Reporter: vm...@google.com
$0
7/8/2026

Potential Referer forgery via crafted chrome-distiller:// URLs in DistillerReferrerThrottle

#496604874Reporter: vi...@google.com
$0
7/8/2026

DOM state corruption via synchronous mutation during state-preserving atomic move

#497646037Reporter: vm...@google.com
$0
7/8/2026

Potential CHIPS bypass in Android WebView due to dropped IsolationInfo in intercepted navigations

#497440158Reporter: vm...@google.com
$0
7/8/2026

Access to URL on tabs without "Tabs" permission, by Chrome Extensions

#40443365Reporter: ba...@gmail.com
$500
7/7/2026

Access to tab's URL and Title by Chrome Extensions without permission

#40450494Reporter: ba...@gmail.com
$500
7/7/2026
Showing 251-260 of 11332 bugs