Leak of unfixed Chromium bug enables JavaScript after browser close

May 21, 2026 at 10:12 PM

•

1 min read

Leak of unfixed Chromium bug enables JavaScript after browser close — Photo: BleepingComputer

TL;DR Summary

Google unintentionally exposed details of an unfixed Chromium vulnerability that can let a Service Worker keep executing JavaScript after the browser is closed, enabling remote code execution and potential botnet-like abuse across all Chromium-based browsers. Despite reports of a fix, researchers found the issue still exploitable in some builds, prompting urgent patching efforts and highlighting that attackers could exploit it with minimal user interaction; Google awarded a bug bounty, and the disclosure raised broad risk though it doesn’t grant access to emails or the host OS.

Topics:technology #botnet #browser #chromium #security #technology #vulnerability

Share this article

Google accidentally exposed details of unfixed Chromium flaw BleepingComputer
Your browser could already be part of a botnet thanks to this dangerous Chrome flaw Android Authority
Google publishes exploit code threatening millions of Chromium users Ars Technica
Critical Chrome flaw could secretly turn your phone into a Botnet PhoneArena
Researcher Unveils Cyber Security Flaw in Google Chrome Tempo.co English

Reading Insights

Total Reads

Unique Readers

Time Saved

4 min

vs 5 min read

Condensed

91%

907 → 86 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights