Disclosed Chromium Security Bugs

Security: Bypass of Issue 1239709: Cross-Origin Response Leak If wildcard ACAO is sent

#40058068Reporter: la...@gmail.com
$4,000
8/2/2025

V8 Sandbox Bypass: AAW via array length corruption in Turbofan spread call inlining

#395895382Reporter: se...@gmail.com
$20,000
8/2/2025

CHECK failure: non_phi_use_found in verifier.cc

#412756062Reporter: sa...@google.com
$0
8/2/2025

Security: Uaf in media::AudioBus

#412057896Reporter: su...@gmail.com
$7,000
8/1/2025

wireshark:fuzzshark_udp_port-dns: Heap-buffer-overflow in make_local_part_domain

#418478205Reporter: 87...@developer.gserviceaccount.com
$0
7/31/2025

ffmpeg:ffmpeg_AV_CODEC_ID_APV_fuzzer: Heap-buffer-overflow in ff_apv_entropy_decode_block

#418421333Reporter: 87...@developer.gserviceaccount.com
$0
7/31/2025

ffmpeg:ffmpeg_BSF_APV_METADATA_fuzzer: Heap-buffer-overflow in ff_copy_bits

#418804929Reporter: 87...@developer.gserviceaccount.com
$0
7/31/2025

Vulnerability: Incomplete List of Disallowed Inputs affecting @babel/traverse affecting GitOnBorg::chromium::catapult

#407898107Reporter: au...@google.com
$0
7/31/2025

RCE via Maglev StringConcat Type Confusion and a 2nd Vulnerability

#412266388Reporter: hu...@gmail.com
$0
7/31/2025

DCHECK failure in !Is(value) in contexts-inl.h

#412752746Reporter: 24...@project.gserviceaccount.com
$0
7/31/2025
Showing 81-90 of 8283 bugs
1...8910...829