Security Advisory

CVE-2024-21640

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-13 07:40:10

Last updated 2025-06-17 21:09:22

Assigner GitHub_M

State PUBLISHED

Description

Chromium Embedded Framework (CEF) is a simple framework for embedding Chromium-based browsers in other applications.`CefVideoConsumerOSR::OnFrameCaptured` does not check `pixel_format` properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e.

← Browse all CVEs View on cve.org ↗