Medium severity5.4NVD Advisory· Published Jan 13, 2024· Updated Jun 17, 2026
CVE-2024-21640
CVE-2024-21640
Description
Chromium Embedded Framework (CEF) is a simple framework for embedding Chromium-based browsers in other applications.CefVideoConsumerOSR::OnFrameCaptured does not check pixel_format properly, which leads to out-of-bounds read out of the sandbox. This vulnerability was patched in commit 1f55d2e.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: < commit 1f55d2e
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.