Disclosed Chromium Security Bugs

WebGLOnWebGPU: draw allowed with invalid vertex / index buffer state

#472376568Reporter: le...@gmail.com
$8,000
4/17/2026

libGLES_mali UAF via WebGPU shaders at llvm::BasicBlock::getTerminator

#442273697Reporter: a7...@gmail.com
$25,000
4/17/2026

Intersection Observer v2 API fails to correctly determine target's visibility for dynamically changed z-indexes, enabling clickjacking against Google One Tap

#422531206Reporter: he...@gmail.com
$5,000
4/17/2026

Crash in Maglev due to Stale ScopeInfo Cache with Async Generators

#470831166Reporter: hu...@gmail.com
$10,000
4/17/2026

CSA_DCHECK failed: IsNotCleared(value)

#471580187Reporter: je...@gmail.com
$8,000
4/17/2026

[Critical] Unresolved Google Bugs Leak

#472921872Reporter: am...@gmail.com
$5,000
4/16/2026

Use-after-poison in base::MemoryConsumer::UpdateMemoryLimit

#467474391Reporter: m....@gmail.com
$9,000
3/20/2026

Use-After-Poison in RouteMap::UpdateActiveRoutes

#467297219Reporter: an...@gmail.com
$8,000
3/19/2026

Maglev's handling of target and new.target is incorrect

#467247247Reporter: hu...@gmail.com
$50,000
3/19/2026

v8 incorrect Integer Overflow Elimination leads to potential OOB R/W

#466786677Reporter: fa...@gmail.com
$7,000
3/18/2026
Showing 1-10 of 957 bugs
1234...96