Disclosed Chromium Security Bugs

DCHECK on V8 Parser while parsing Class Static Functions

#363538434Reporter: ta...@gmail.com
$8,000
12/21/2024

User can unknowingly Permission Prompt Hidden behind PiP during Interaction

#364508693Reporter: fa...@gmail.com
$1,000
12/21/2024

updater allows non-admins to install a system app via the COM API

#366287940Reporter: ga...@google.com
$0
12/21/2024

Security: Potential Use-After-Free in GetAttrSubstitutionValue

#365802556Reporter: kd...@gmail.com
$11,000
12/21/2024

Reset dummy GCPW gaia user if device is cloned via sysprep

#41485478Reporter: yu...@google.com
$0
12/21/2024

Security: bypass CSP navigate-to feature with serviceWorker navigate function

#40059525Reporter: 0x...@gmail.com
$1,000
12/20/2024

Fatal error in ../../src/deoptimizer/deoptimizer.cc, line 1002

#363826217Reporter: sw...@gmail.com
$0
12/19/2024

Chrome devTools "Copy as cURL (cmd)" Allows Arbitrary Code Execution in CMD

#352651673Reporter: fa...@gmail.com
$1,000
12/18/2024

JSPI stack switching breaks lazy deoptimization guarantees, leading to type confusion

#365376497Reporter: ma...@gmail.com
$55,000
12/18/2024

UaF in LensOverlayBlurLayerDelegate::FetchBackgroundImage

#365516486Reporter: ch...@gmail.com
$2,000
12/18/2024
Showing 2681-2690 of 10545 bugs
1...268269270...1055