Google Uses LLMs for vuln discovery
CPE vendor key: google ·
2,531 CVEs published in the last 24 months.
CVEs (365 d)
1,842
▲ +515 vs prior 30d
Avg CVSS (365 d)
7.24
over 1,842 CVEs
Avg EPSS pct (365 d)
0.12
higher = more likely exploited
KEV hit rate (365 d)
0.8%
14 of 1,842 added to CISA KEV
LLM-credited CVEs
151
Openai 151
Monthly CVE volume — last 24 months
Each point is one calendar month. Bars in the
severity card to the right slice the same volume by CVSS band.
Severity mix
Stacked by CVSS band (Critical / High / Medium /
Low) using the best available metric per CVE.
Top affected products (24 mo)
1,487
1,116
29
3
3
3
3
3
3
3
Distinct CVEs that include each product in their
CPE configuration.
Top CWEs (24 mo)
525
312
241
211
94
91
87
68
67
61
Distinct CVEs assigned each weakness.
Recent CISA KEV adds (last 12 months)
| Added | CVE | Product | KEV name |
|---|---|---|---|
| 2026-06-09 | CVE-2026-11645 | Chromium V8 | Google Chromium V8 Out-of-Bounds Read and Write Vulnerability |
| 2026-04-01 | CVE-2026-5281 | Dawn | Google Dawn Use-After-Free Vulnerability |
| 2026-03-13 | CVE-2026-3909 | Skia | Google Skia Out-of-Bounds Write Vulnerability |
| 2026-03-13 | CVE-2026-3910 | Chromium V8 | Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffer Vulnerability |
| 2026-02-17 | CVE-2026-2441 | Chromium | Google Chromium CSS Use-After-Free Vulnerability |
| 2025-12-12 | CVE-2025-14174 | Chromium | Google Chromium Out of Bounds Memory Access Vulnerability |
| 2025-11-19 | CVE-2025-13223 | Chromium V8 | Google Chromium V8 Type Confusion Vulnerability |
| 2025-09-23 | CVE-2025-10585 | Chromium V8 | Google Chromium V8 Type Confusion Vulnerability |
| 2025-07-22 | CVE-2025-6558 | Chromium | Google Chromium ANGLE and GPU Improper Input Validation Vulnerability |
| 2025-07-02 | CVE-2025-6554 | Chromium V8 | Google Chromium V8 Type Confusion Vulnerability |
Filtered to KEV rows where the CISA vendor name matches this vendor,
to drop cross-OS noise (e.g. third-party Windows apps that CPE-map to
Microsoft).
LLM-credited CVEs from this vendor
| Published | CVE | LLM family | Model(s) |
|---|---|---|---|
| 2026-05-28 | CVE-2026-10000 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10001 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10002 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10003 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10004 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10005 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10006 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10007 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10008 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10009 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10010 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10011 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10012 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10013 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10014 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10015 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10016 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10017 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10018 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10019 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10020 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10021 | openai | OpenAI |
| 2026-05-28 | CVE-2026-10022 | openai | OpenAI |
| 2026-05-28 | CVE-2026-9872 | openai | OpenAI |
| 2026-05-28 | CVE-2026-9873 | openai | OpenAI |
From
mythos_attributed_cves: CVEs whose NVD description
or vendor advisory credits an LLM-assisted discovery. Confidence is
high for every row.
Generated 19 June 2026 13:18 UTC <span class="time-ago" data-iso="2026-06-19T13:18:30Z"></span>.