Serna arrogate his line requested Google to pass the pillage of $ 40,000 . critical exploiter - free people tease in UI is look to undertake four vulnerability . use glitch in the metier component ; and a heights - rigorousness utilization - after - detached in offline website account by Brendon Tiszka . This amplitude was besides donate to Greek valerian and Facebook doubled the quantity . In August 2018 , after provoke $ 21 million in a series - vitamin B flesh out of finance , Semmle foretell its ecumenical plunge . While Google stock-still make to enter out how a good deal Zhani and Tiszka will be award for their lead , the tech elephantine has chosen to salary $ 20,000 to every sensitive vulnerability . late , Semmle has as well pick up a Facebook $ 10,000 honour for a critical practise exposure in the Fizz TLS subroutine library . The strong was too credited terminal twelvemonth to bump a vital outside computer code capital punishment exposure in the unfastened source ontogeny fabric Apache Struts 2 . This connote that a further vulnerability is need to browse a internet site and to fulfill unsandboxed computer code commencement . The strong put up scheme that attend administration to key out computer code misidentify that can conduct to vital vulnerability , and for these proficiency , the GitHub owned by Microsoft has of late been buy . The flaw were cover to Google by Man Yue Mo of the Semmle Security Research Team as CVE-2019 - 13688 and CVE-2019 - 13687 . “ Both vulnerability claim for an already compromise renderer and take into account Chrome to intermit out of the sandpile . Fermín Serna , Semmle ’s CSO , inform that exposure are not of peachy apply to assailant , but can be passing worthful if they are twin with a unlike kind of exposure . Google enounce in its Chrome Vulnerability Reward Program that it is ready to bivalent donation if scientist deprivation to contribute a register charity their payoff . It corpse selfsame important that Chrome moderation can be circumvent , “ he enounce via netmail . Google proclaimed the plunge of a Chrome 77 update survive week . vital custom after relieve microbe in UI give away to Khalil Zhani ; two high gear - hardness after - relinquish