Disclosed Chromium Security Bugs

CHECK failure: Node::New() Error: #287:Float32LessThanOrEqual[1] is nullptr in node.cc

#40055092Reporter: cl...@chromium.org
$0
6/15/2021

Security: ImageFetchTabHelper::GetImageDataByJs allows child frames to inject scripts into parent (UXSS)

#40054408Reporter: ni...@gmail.com
$10,000
6/12/2021

Security: CSP restrictions aren't applied when navigating a frame to about:blank

#40094770Reporter: de...@gmail.com
$7,500
6/11/2021

Chrome Content security Policy bypass

#40095297Reporter: no...@gmail.com
$1,000
6/11/2021

Security: Side-channel attack against Autofill Preview that can steal user's data (e.g., credit card number).

#40052135Reporter: jp...@gmail.com
$500
6/11/2021

Full CSP bypass by opening a blob URL in a new tab and reloading it with history.back

#40053054Reporter: he...@gmail.com
$3,000
6/11/2021

Security: Full CSP bypass through blob: URIs

#40053062Reporter: gi...@gmail.com
$5,000
6/11/2021

Security: Full CSP bypass through filesystem URIs

#40053113Reporter: gi...@gmail.com
$5,000
6/11/2021

Security: determining size of CORB/CORP'd cross-origin responses

#40054032Reporter: to...@gmail.com
$500
6/11/2021

Security: UaF in V4L2VideoEncodeAccelerator

#40054063Reporter: an...@chromium.org
$0
6/11/2021
Showing 6331-6340 of 10955 bugs