Disclosed Chromium Security Bugs
←Back to DashboardArbitrary browser-initiated navigation via unvalidated Web App Migration API manifest
$0
7/7/2026
Extension access to passkeys (webauthn) bypasses runtime_blocked_hosts enterprise policy
$2,000
7/7/2026
Unbounded page dimensions in SkMultiPictureDocument lead to DoS in PrintCompositor
$0
7/7/2026
Potential Cross-Origin Password Generation Poisoning in ChromePasswordManagerClient
$0
7/7/2026
Potential Browser Process Double-Free via Race Condition in OutputStreamWriteOperation
$0
7/7/2026
Permission Spoofing/Bypass via Missing Scheme Check in ChromePermissionsClient
$0
7/7/2026
Microphone permission bypass via TOCTOU in SpeechRecognitionManagerDelegate
$0
7/7/2026
Sandbox Escape: Premature RenderFrameDeleted via spoofed DidUnloadRenderFrame during inner delegate attach
$0
7/7/2026
Potential Use-After-Free in ImageDownloaderImpl::ContextDestroyed
$0
7/7/2026
WebUSB bug bypasses Chromium's protected USB class restrictions, giving any webpage unrestricted access to USB devices.
$2,000
7/7/2026