Vulnerability feed

Vulnerability

CVE-2023-4863

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-4863
Description:: Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Last updated date:: 10/02/2023

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/06/2023
Reference url to background: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_12.html

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/11/2023
Reference url to background: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/12/2023
Reference url to background: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_12.html

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/13/2023
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/19/2023
Reference url to background: https://news.ycombinator.com/item?id=37478403

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/19/2023
Reference url to background: https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/21/2023
Reference url to background: https://github.com/mistymntncop/CVE-2023-4863

Vulnerability Feed Contributors About Blog

@inTheWild

©2023 |