Cyber Resilience

← All vendors

Google Uses LLMs for vuln discovery

CPE vendor key: google · 2,531 CVEs published in the last 24 months.

CVEs (365 d)
1,842
▲ +515 vs prior 30d
Avg CVSS (365 d)
7.24
over 1,842 CVEs
Avg EPSS pct (365 d)
0.12
higher = more likely exploited
KEV hit rate (365 d)
0.8%
14 of 1,842 added to CISA KEV
LLM-credited CVEs
151
Openai 151

Monthly CVE volume — last 24 months

2024202520260593
Each point is one calendar month. Bars in the severity card to the right slice the same volume by CVSS band.

Severity mix

CritHighMedLow
Stacked by CVSS band (Critical / High / Medium / Low) using the best available metric per CVE.

Top affected products (24 mo)

chrome
1,487
android
1,116
chrome_os
29
tensorflow
3
pixel_6_pro
3
pixel_3
3
pixel_9_pro_fold
3
pixel_6a
3
pixel_4a
3
pixel_2
3
Distinct CVEs that include each product in their CPE configuration.

Top CWEs (24 mo)

CWE-416
525
CWE-787
312
CWE-20
241
CWE-125
211
CWE-451
94
CWE-693
91
CWE-122
87
CWE-472
68
CWE-843
67
CWE-269
61
Distinct CVEs assigned each weakness.

Recent CISA KEV adds (last 12 months)

AddedCVEProductKEV name
2026-06-09CVE-2026-11645Chromium V8Google Chromium V8 Out-of-Bounds Read and Write Vulnerability
2026-04-01CVE-2026-5281DawnGoogle Dawn Use-After-Free Vulnerability
2026-03-13CVE-2026-3909SkiaGoogle Skia Out-of-Bounds Write Vulnerability
2026-03-13CVE-2026-3910Chromium V8Google Chromium V8 Improper Restriction of Operations Within the Bounds of a Memory Buffer Vulnerability
2026-02-17CVE-2026-2441ChromiumGoogle Chromium CSS Use-After-Free Vulnerability
2025-12-12CVE-2025-14174ChromiumGoogle Chromium Out of Bounds Memory Access Vulnerability
2025-11-19CVE-2025-13223Chromium V8Google Chromium V8 Type Confusion Vulnerability
2025-09-23CVE-2025-10585Chromium V8Google Chromium V8 Type Confusion Vulnerability
2025-07-22CVE-2025-6558ChromiumGoogle Chromium ANGLE and GPU Improper Input Validation Vulnerability
2025-07-02CVE-2025-6554Chromium V8Google Chromium V8 Type Confusion Vulnerability
Filtered to KEV rows where the CISA vendor name matches this vendor, to drop cross-OS noise (e.g. third-party Windows apps that CPE-map to Microsoft).

LLM-credited CVEs from this vendor

PublishedCVELLM familyModel(s)
2026-05-28CVE-2026-10000openaiOpenAI
2026-05-28CVE-2026-10001openaiOpenAI
2026-05-28CVE-2026-10002openaiOpenAI
2026-05-28CVE-2026-10003openaiOpenAI
2026-05-28CVE-2026-10004openaiOpenAI
2026-05-28CVE-2026-10005openaiOpenAI
2026-05-28CVE-2026-10006openaiOpenAI
2026-05-28CVE-2026-10007openaiOpenAI
2026-05-28CVE-2026-10008openaiOpenAI
2026-05-28CVE-2026-10009openaiOpenAI
2026-05-28CVE-2026-10010openaiOpenAI
2026-05-28CVE-2026-10011openaiOpenAI
2026-05-28CVE-2026-10012openaiOpenAI
2026-05-28CVE-2026-10013openaiOpenAI
2026-05-28CVE-2026-10014openaiOpenAI
2026-05-28CVE-2026-10015openaiOpenAI
2026-05-28CVE-2026-10016openaiOpenAI
2026-05-28CVE-2026-10017openaiOpenAI
2026-05-28CVE-2026-10018openaiOpenAI
2026-05-28CVE-2026-10019openaiOpenAI
2026-05-28CVE-2026-10020openaiOpenAI
2026-05-28CVE-2026-10021openaiOpenAI
2026-05-28CVE-2026-10022openaiOpenAI
2026-05-28CVE-2026-9872openaiOpenAI
2026-05-28CVE-2026-9873openaiOpenAI
From mythos_attributed_cves: CVEs whose NVD description or vendor advisory credits an LLM-assisted discovery. Confidence is high for every row.

Generated 19 June 2026 13:18 UTC <span class="time-ago" data-iso="2026-06-19T13:18:30Z"></span>.