Vulnerability feed

Vulnerability

CVE-2023-4863

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-4863
Description:: Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Last updated date:: 03/13/2025

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/06/2023
Reference url to background: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_12.html

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/11/2023
Reference url to background: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/12/2023
Reference url to background: https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_12.html

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/13/2023
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 10/04/2023
Reference url to background: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-4863

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/19/2023
Reference url to background: https://news.ycombinator.com/item?id=37478403

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/19/2023
Reference url to background: https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/21/2023
Reference url to background: https://github.com/mistymntncop/CVE-2023-4863

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/25/2023
Reference url to background: https://github.com/bbaranoff/CVE-2023-4863

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/29/2023
Reference url to background: https://github.com/OITApps/Find-VulnerableElectronVersion

Type:: exploit
Confidence:: HIGH
Date of publishing:: 09/30/2023
Reference url to background: https://github.com/GTGalaxi/ElectronVulnerableVersion

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/05/2023
Reference url to background: https://github.com/murphysecurity/libwebp-checker

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/18/2023
Reference url to background: https://github.com/LiveOverflow/webp-CVE-2023-4863

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/19/2023
Reference url to background: https://github.com/caoweiquan322/NotEnough

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/27/2024
Reference url to background: https://blog.isosceles.com/the-webp-0day/

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/27/2024
Reference url to background: https://sethmlarson.dev/security-developer-in-residence-weekly-report-16

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/20/2024
Reference url to background: https://www.vicarius.io/vsociety/posts/zero-day-webp-vulnerability-cve-2023-4863

Vulnerability Feed Contributors About Blog

@inTheWild

©2025 |