Today > | 3 Medium | 2 Low vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-6990

Aug. 1, 2024, 6:15 p.m.

Product(s) Impacted

Google Chrome on Android

  • prior to 127.0.6533.88

Description

Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)

Weaknesses

CWE-457
Use of Uninitialized Variable

The code uses a variable that has not been initialized, leading to unpredictable or unintended results.

CWE ID: 457

Date

Published: Aug. 1, 2024, 6:15 p.m.

Last Modified: Aug. 1, 2024, 6:15 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

chrome-cve-admin@google.com

References

https://chromereleases.googleblog.com/ chrome-cve-admin@google.com

https://issues.chromium.org/ chrome-cve-admin@google.com