Back

CVE-2024-7018

Sept. 23, 2024, 10:15 p.m.

Received
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Google Chrome

  • before 124.0.6367.78

Source

chrome-cve-admin@google.com

Tags

chrome-cve-admin@google.com
CWE-122
2024-09-23
CVE-2024-7018

CVE-2024-7018 details

Published : Sept. 23, 2024, 10:15 p.m.
Last Modified : Sept. 23, 2024, 10:15 p.m.

Description

Heap buffer overflow in PDF in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description
CWE-122 Heap-based Buffer Overflow A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

References

URL Source
https://issues.chromium.org/issues/333414305 chrome-cve-admin@google.com
This website uses the NVD API, but is not approved or certified by it.