Products
Google Chrome on Android
- prior to 127.0.6533.88
Source
chrome-cve-admin@google.com
Tags
CVE-2024-6990 details
Published : Aug. 1, 2024, 6:15 p.m.
Last Modified : Aug. 1, 2024, 6:15 p.m.
Last Modified : Aug. 1, 2024, 6:15 p.m.
Description
Uninitialized Use in Dawn in Google Chrome on Android prior to 127.0.6533.88 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Critical)
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|---|---|
| CWE-457 | Use of Uninitialized Variable | The code uses a variable that has not been initialized, leading to unpredictable or unintended results. |
References
| URL | Source |
|---|---|
| https://chromereleases.googleblog.com/2024/07/stable-channel-update-for-desktop_30.html | chrome-cve-admin@google.com |
| https://issues.chromium.org/issues/353034820 | chrome-cve-admin@google.com |
This website uses the NVD API, but is not approved or certified by it.