Some of the security vulnerabilities I’ve reported can be found below. A complete list of all issues I’ve reported to Chrome can be found at https://bugs.chromium.org/p/chromium/issues/list?q=reporter%3A773975515&can=1.
CVE-2018-18349 Google Chrome: Insufficient policy enforcement in Blink.
CVE-2019-5766 Google Chrome: Insufficient policy enforcement in Canvas.
CVE-2019-5778 Google Chrome: Insufficient policy enforcement in Extensions.
CVE-2019-5779 Google Chrome: Insufficient policy enforcement in ServiceWorker.
CVE-2019-5823 Google Chrome: Forced navigation from service worker.
CVE-2019-5838 Google Chrome: Overly permissive tab access in Extensions.
CVE-2019-5852 Google Chrome: Object leak of utility functions.
CVE-2019-13662 Google Chrome: CSP bypass.
CVE-2019-13668 Google Chrome: Global window leak via console.
CVE-2019-13673 Google Chrome: Cross-origin information leak using devtools.
CVE-2019-13681 Google Chrome: Bypass on download restrictions.
CVE-2019-13683 Google Chrome: Exceptions leaked by devtools.