CVE-2024-38207
6.3
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Exploitability: 2.8 / Impact: 3.4
Source: NVD
Description
Microsoft Edge (HTML-based) Memory Corruption Vulnerability
Affected (1)
Products: Microsoft: Edge Chromium
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 128.0.2739.42 |
Related CWEs
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.
References (1)
Source: secure@microsoft.com
PatchVendor Advisory
Timeline
No history available yet.