Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Metrics
Affected Vendors & Products
References
History
Fri, 20 Dec 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Bandisoft
Bandisoft honeyview |
|
CPEs | cpe:2.3:a:microsoft:teams:1.6.00.26463:*:*:*:*:macos:*:* cpe:2.3:a:microsoft:teams:1.6.00.26474:*:*:*:*:desktop:*:* cpe:2.3:a:microsoft:webp_image_extension:1.0.62681.0:*:*:*:*:*:*:* cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:* cpe:2.3:a:mozilla:firefox_esr:*:*:*:*:*:*:*:* |
cpe:2.3:a:bandisoft:honeyview:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:teams:*:*:*:*:*:macos:*:* cpe:2.3:a:microsoft:teams:*:*:*:*:desktop:*:*:* cpe:2.3:a:microsoft:webp_image_extension:*:*:*:*:*:*:*:* cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:* cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:* |
Vendors & Products |
Microsoft edge
Mozilla firefox Esr |
Bandisoft
Bandisoft honeyview |
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Wed, 14 Aug 2024 01:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: Chrome
Published: 2023-09-12T14:24:59.275Z
Updated: 2024-08-19T07:48:10.265Z
Reserved: 2023-09-09T01:02:58.312Z
Link: CVE-2023-4863
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-12T15:15:24.327
Modified: 2024-12-20T19:00:21.050
Link: CVE-2023-4863
Redhat