Disclosed Chromium Security Bugs

Security: Security DCHECK failed in StringView

#412265459Reporter: su...@gmail.com
$7,000
8/14/2025

V8 Sandbox Bypass: UAF during LargeObjectSpace tear down

#411598604Reporter: v8...@gmail.com
$5,000
8/14/2025

ipcz bug can allow renderer duplicate browser process handle to escape sandbox

#412578726Reporter: ha...@gmail.com
$250,000
8/6/2025

V8 Sandbox Bypass: AAW via array length corruption in Turbofan spread call inlining

#395895382Reporter: se...@gmail.com
$20,000
8/2/2025

Security: Uaf in media::AudioBus

#412057896Reporter: su...@gmail.com
$7,000
8/1/2025

container-overflow in blink::CloseWatcher::WatcherStack::Signal() close_watcher.cc:170:10

#409911705Reporter: m....@gmail.com
$5,000
7/29/2025

V8 Sandbox Bypass: OOB write in JsonParser::DecodeString (double fetch)

#396446145Reporter: v8...@gmail.com
$5,000
7/25/2025

Security: Omnibox Spoofing in MacOS

#41483793Reporter: fa...@gmail.com
$5,000
7/25/2025

GPU process crash via WebGPU shader - heap-buffer-overflow in Mesa brw_fs_opt_register_coalesce

#384531062Reporter: a7...@gmail.com
$10,000
7/24/2025

libGLES_mali UAF via WebGPU shaders at llvm::PatternMatch::undef_match::check

#391284742Reporter: a7...@gmail.com
$5,000
7/23/2025
Showing 1-10 of 854 bugs
1234...86