47 matches found
CVE-2024-21640
Chromium Embedded Framework CEF is a simple framework for embedding Chromium-based browsers in other applications.CefVideoConsumerOSR::OnFrameCaptured does not check pixelformat properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e...
Design/Logic Flaw
Chromium Embedded Framework CEF is a simple framework for embedding Chromium-based browsers in other applications.CefVideoConsumerOSR::OnFrameCaptured does not check pixelformat properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e...
CVE-2024-21640 OOB Access in CefVideoConsumerOSR::OnFrameCaptured
Chromium Embedded Framework CEF is a simple framework for embedding Chromium-based browsers in other applications.CefVideoConsumerOSR::OnFrameCaptured does not check pixelformat properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e...
CVE-2024-21640 OOB Access in CefVideoConsumerOSR::OnFrameCaptured
Chromium Embedded Framework CEF is a simple framework for embedding Chromium-based browsers in other applications.CefVideoConsumerOSR::OnFrameCaptured does not check pixelformat properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e...
CVE-2024-21640
CEF (Chromium Embedded Framework) is affected by CVE-2024-21640 due to CefVideoConsumerOSR::OnFrameCaptured not validating pixel_format, causing an out-of-bounds read in sandboxed code. The issue is described across multiple sources as a buffer/OOB access vulnerability in the video path of CEF; t...
Chromium Embedded Framework Buffer Error Vulnerability
Chromium Embedded Framework CEF is a simple framework for Chromium Embedded Framework open source. It is used to embed Chromium-based browsers in other applications. A buffer error vulnerability exists in Chromium Embedded Framework CEF that stems from CefVideoConsumerOSR OnFrameCaptured not...
PT-2024-18990 · Unknown · Chromium Embedded Framework
Name of the Vulnerable Software and Affected Versions: Chromium Embedded Framework CEF affected versions not specified Description: The issue arises from the CefVideoConsumerOSR::OnFrameCaptured function not properly checking the pixel format, leading to an out-of-bounds read outside of the...
CVE-2024-21639
CEF Chromium Embedded Framework is a simple framework for embedding Chromium-based browsers in other applications. CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory does not check the size of the shared memory, which leads to out-of-bounds read outside the sandbox. This vulnerability was patche...
CVE-2024-21639 OOB Access in CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory
CEF Chromium Embedded Framework is a simple framework for embedding Chromium-based browsers in other applications. CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory does not check the size of the shared memory, which leads to out-of-bounds read outside the sandbox. This vulnerability was patche...
CVE-2024-21639 OOB Access in CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory
CEF Chromium Embedded Framework is a simple framework for embedding Chromium-based browsers in other applications. CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory does not check the size of the shared memory, which leads to out-of-bounds read outside the sandbox. This vulnerability was patche...
CVE-2024-21639
CEF (Chromium Embedded Framework) is affected by an out-of-bounds read in CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory caused by not checking the shared-memory size. This affects the component responsible for embedding Chromium-based browsers in apps. The issue was patched in commit 1f55d2...
Chromium Embedded Framework (CEF) Buffer Error Vulnerability
Chromium Embedded Framework CEF is a simple framework for Chromium Embedded Framework open source. It is used to embed Chromium-based browsers in other applications. Chromium Embedded Framework CEF suffers from a buffer error vulnerability that stems from CefLayeredWindowUpdaterOSR...
PT-2024-18989 · Cef · Cef
Name of the Vulnerable Software and Affected Versions: CEF Chromium Embedded Framework versions prior to the version containing commit 1f55d2e Description: The issue arises from the CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory function not checking the size of the shared memory, leading to...
CVE-2021-46899
SyncTrayzor 1.1.29 enables CEF Chromium Embedded Framework remote debugging, allowing a local attacker to control the application...
CVE-2021-46899
SyncTrayzor 1.1.29 enables CEF Chromium Embedded Framework remote debugging, allowing a local attacker to control the application...
Design/Logic Flaw
SyncTrayzor 1.1.29 enables CEF Chromium Embedded Framework remote debugging, allowing a local attacker to control the application...
SyncTrayzor Security Vulnerability
SyncTrayzor is a small tray utility for Syncthing on Windows. A security vulnerability exists in SyncTrayzor version 1.1.29 that stems from enabling CEF remote debugging, allowing a local attacker to take control of the application...
PT-2023-12619 · Unknown +1 · Synctrayzor +1
Name of the Vulnerable Software and Affected Versions: SyncTrayzor version 1.1.29 Description: The issue allows a local attacker to control the application due to the enabled CEF Chromium Embedded Framework remote debugging. Recommendations: For SyncTrayzor version 1.1.29, consider disabling the...
CVE-2021-46899
CVE-2021-46899 affects SyncTrayzor 1.1.29. The issue arises from enabling Chromium Embedded Framework (CEF) remote debugging, which allows a local attacker to control the application. According to NVD, the CVSSv3.1 base score is 7.8 (HIGH) with LOCAL attack vector, LOW attack complexity, and LOW ...
Valve: Steam Deck Single Click Root Remote Code Execution
Vulnerability description not provided...