CVE-2024-21640
13.01.2024, 08:15
Chromium Embedded Framework (CEF) is a simple framework for embedding Chromium-based browsers in other applications.`CefVideoConsumerOSR::OnFrameCaptured` does not check `pixel_format` properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e.Enginsight
| Vendor | Product | Version |
|---|---|---|
| chromiumembedded | chromium_embedded_framework | 𝑥 < 2024-01-05 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References