CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
97.9%
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Alpine | edge-community | noarch | chromium | < 116.0.5845.187-r0 | UNKNOWN |
Alpine | edge-community | noarch | firefox-esr | < 115.2.1-r0 | UNKNOWN |
Alpine | edge-community | noarch | qt5-qtimageformats | < 5.15.10_git20230612-r1 | UNKNOWN |
Alpine | edge-community | noarch | qt5-qtwebengine | < 5.15.15-r1 | UNKNOWN |
Alpine | edge-main | noarch | libwebp | < 1.3.1-r1 | UNKNOWN |
Alpine | 3.15-main | noarch | libwebp | < 1.2.2-r2 | UNKNOWN |
Alpine | 3.16-main | noarch | libwebp | < 1.2.3-r2 | UNKNOWN |
Alpine | 3.17-main | noarch | libwebp | < 1.2.4-r3 | UNKNOWN |
Alpine | 3.18-community | noarch | chromium | < 116.0.5845.187-r0 | UNKNOWN |
Alpine | 3.18-community | noarch | firefox-esr | < 115.2.1-r0 | UNKNOWN |
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
97.9%