Disclosed Chromium Security Bugs

The name attribute length on a PWA's manifest doesn't have a limit, which allows an attacker to spoof its message and origin

#40061287Reporter: he...@gmail.com
$1,000
4/16/2025

TOCTOU in PersistentHistogramAllocator::GetHistogram

#378623799Reporter: bl...@gmail.com
$2,000
4/15/2025

Use after free in AddressSignInPromoView.

#385355879Reporter: ch...@gmail.com
$2,000
4/15/2025

Vulnerability: OSV-2024-460: UNKNOWN READ in glslang::TInfoSinkBase::location affecting GitOnBorg::chromium::chromium::src

#357737685Reporter: se...@google.com
$0
4/15/2025

V8 Sandbox Bypass: AAR/W via generic function table `call_indirect` rtt check bypass

#350292240Reporter: se...@gmail.com
$20,000
4/12/2025

WasmGCTypeAnalyzer improperly revisits single-block loops, leading to type confusion

#383356864Reporter: ma...@popax21.dev
$55,000
4/11/2025

Security: Skia integer overflow (results in OOB) at AAHairlineOp::onPrepareDraws

#382786791Reporter: kd...@gmail.com
$3,000
4/11/2025

Hard coded storage bucket URL in Chrome allows for malicious Javascript / HTML to be run on numerous users without they knowledge

#385538383Reporter: ak...@gmail.com
$1,000
4/11/2025

V8 correctness failure in sources: 26

#384773802Reporter: 24...@project.gserviceaccount.com
$0
4/11/2025

Incorrect node replacement optimization during Maglev graph construction leads to RCE

#386565144Reporter: hu...@gmail.com
$50,000
4/11/2025
Showing 421-430 of 8283 bugs
1...424344...829