Disclosed Chromium Security Bugs

WebGLOnWebGPU: draw allowed with invalid vertex / index buffer state

#472376568Reporter: le...@gmail.com
$8,000
4/17/2026

libGLES_mali UAF via WebGPU shaders at llvm::BasicBlock::getTerminator

#442273697Reporter: a7...@gmail.com
$25,000
4/17/2026

Intersection Observer v2 API fails to correctly determine target's visibility for dynamically changed z-indexes, enabling clickjacking against Google One Tap

#422531206Reporter: he...@gmail.com
$5,000
4/17/2026

Crash in Maglev due to Stale ScopeInfo Cache with Async Generators

#470831166Reporter: hu...@gmail.com
$10,000
4/17/2026

CSA_DCHECK failed: IsNotCleared(value)

#471580187Reporter: je...@gmail.com
$8,000
4/17/2026

[Critical] Unresolved Google Bugs Leak

#472921872Reporter: am...@gmail.com
$5,000
4/16/2026

On Ubuntu (or other Linux-based systems) an attacker can steal files uploaded to other sites with little user interaction.

#470928605Reporter: va...@hotmail.com
$1,000
4/15/2026

User can unknowingly Execute External File Hidden behind PiP during Interaction

#363930141Reporter: fa...@gmail.com
$1,000
4/1/2026

Android fullscreen notification is not shown when Chrome is in split-screen

#373746918Reporter: fa...@gmail.com
$1,000
3/31/2026

Unintended File Upload via `webkitdirectory` triggered by Keyboard interactions on macOS Chrome

#366056651Reporter: fa...@gmail.com
$1,000
3/31/2026
Showing 1-10 of 1698 bugs
1234...170