Disclosed Chromium Security Bugs
←Back to DashboardDifferential fuzz: Type Confusion in Maglev JIT via Non-transitive IsEscaping Checks
$0
7/3/2026
Dawn: Heap Use-After-Free in AsyncTaskManager::RunTask via premature WaitableEvent nullification
$10,000
7/3/2026
Potential UAF in AwDrawFnImpl leading to Sandbox Escape
$0
7/3/2026
Phi untagging invalidates BuildCheckHeapObject's type refinement
$0
7/3/2026
Permission bypass in WebRequest API allows compromised renderer to intercept general traffic
$0
7/3/2026
Potential Use-After-Free in NavigationEntryImpl via duplicate frame unique_names
$0
7/3/2026
Potential DOM tree corruption via iframe unload in variadic DOM mutations
$0
7/3/2026
Potential UAF in RenderWidgetHostNSViewBridge::SetTextSelection via nested-loop reentrancy
$0
7/3/2026
Potential cross-origin ViewTransition snapshot leak via same-site prerender redirect
$0
7/3/2026
UXSS via unvalidated javascript: URI in Enterprise Search Aggregator
$0
7/3/2026