Home > Cyber News > $40,000 spent by Google on Chrome 43 External Vulnerability Reports
CYBER NEWS

$40,000 spent by Google on Chrome 43 External Vulnerability Reports

by   |  Last Update:  |  0 Comments  

More and more enterprises are relying on external research teams to deal with security issues and vulnerabilities in a range of products. One of the latest news on the matter concerns Google Chrome. Google has recently paid about $38,330 to outside developers who had discovered a total of 37 bugs in Chrome. Six of the glitches were voted high severity risks.google-chrome

The highest amount of money – 16,337 – was given for the disclosure of the CVE-2015-1252 vulnerability.

The bug bounty wished to stay anonymous. Another disclosed bug was classified as a cross-origin bypass in the Document Object Model (DOM). The issue is known as CVE-2015-1253 and is estimated at $7,500. Again, the developer who discovered the problem is not revealed. Some researchers suspect that the two bugs were reported by the same person.

Third on the list is CVE-2015-1251, disclosed by SkyLined cooperating with HP’s Zero Day Initiative. CVE-2015-1251 was found in the Speech component in Chrome used to translate users’ audio commands. No money was spent on the disclosure of the bug.

Other revealed vulnerabilities include two use-after free errors and one more cross-origin bypass in the Editing component.

Google rewarded the independent researchers who found the last two bugs $2000. The described issues were classified as severe threats, the rest of the disclosed bugs were not considered dangerous. Bug bounties were given between $500 and $1500 for each.

Aside from the patched glitches, Google has been paying outer developers to prevent bugs from entering Chrome’s stable channel. As a matter of fact, Chrome supports several stable channels to roll updates to users slowly, as the company explains.

The receiving of new updates does not require efforts on the user’s side. The process is carried out automatically. All new changes are applied after the browser is restarted.

Milena Dimitrova

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

More Posts

Follow Me:
Twitter

Related posts:
  1. Adobe Patches 112 Vulnerabilities in Latest Patch Package (CVE-2018-5007) Adobe has released the latest patch package that addresses a...
  2. The 10 Funniest Computer Fails, Bugs and Errors As long as there is code, there will always be...
  3. Which is the Most Secure Browser for 2015 – Firefox, Chrome, Internet Explorer, Safari A Web browser can be two things. A person who...
  4. New Critical Bugs in Firefox, Chrome and Edge (CVE-2020-16044) Users should patch several new browser vulnerabilities affecting Chrome, Firefox,...
  5. Update Your Google Chrome to Fix the CVE-2021-30551 Vulnerability Have you patched your Chrome browser? Google just fixed a...
  6. Google, Microsoft Bugs Top the 20 Most Prevalent Enterprise Vulnerabilities Cybersecurity firm Tenable just released their Vulnerability Intelligence Report which...
  7. CVE-2020-16042: Critical Vulnerability Lurking in Firefox and Chrome We advise you to check whether you’re running the latest...
  8. Danish Company Reports 100,000 Credit Cards Possibly Compromised A payment processing company going by the name Nets from...

Leave a Comment

Your email address will not be published. Required fields are marked *

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree