Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out-of-bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

References

https://vulners.com/cve/CVE-2023-4863
https://nvd.nist.gov/vuln/detail/CVE-2023-4863
https://www.techtarget.com/searchsecurity/news/366551978/Browser-companies-patch-critical-zero-day-vulnerability

CPENameOperatorVersion
nuget/cefsharp.common.netcorelt116.0.230

CPE	Name	Operator	Version
	nuget/cefsharp.common.netcore	lt	116.0.230

References

github.com/advisories/GHSA-j646-gj5p-p45g

github.com/cefsharp/CefSharp/commit/f2890ba66170afb0bf742839febe4d20449f758c

github.com/cefsharp/CefSharp/releases/tag/v116.0.230

github.com/cefsharp/CefSharp/security/advisories/GHSA-j646-gj5p-p45g

kaspersky 3

osv 17

slackware 3

nessus 69

fedora 4

attackerkb 1

freebsd 2

prion 1

paloalto 1

github 4

mageia 1

cgr 1

oraclelinux 6

openvas 43

hp 1

cvelist 1

nvd 1

cve 1

githubexploit 5

debian 6

alpinelinux 1

hivepro 1

debiancve 1

almalinux 3

cloudfoundry 2

ibm 2

amazon 4

wolfi 1

chrome 1

thn 1

ubuntu 2

veracode 2

rocky 1

cnvd 1

ubuntucve 1

mscve 1

redhatcve 1

redhat 1

ics 1

kaspersky

KLA60569 DoS vulnerablity in Microsoft Browser

2023-09-12 00:00:00

KLA61312 DoS vulnerability in Opera

2023-09-13 00:00:00

KLA60003 DoS vulnerability in Google Chrome

2023-09-11 00:00:00

osv

libwebp - security update

2023-09-13 00:00:00

thunderbird - security update

2023-09-15 00:00:00

firefox-esr - security update

2023-09-16 00:00:00

slackware

[slackware-security] mozilla-thunderbird

2023-09-14 02:32:34

[slackware-security] seamonkey

2023-09-21 19:43:16

[slackware-security] libwebp

2023-09-14 21:21:47

nessus

Mozilla Firefox ESR < 102.15.1

2023-09-13 00:00:00

Debian DSA-5497-1 : libwebp - security update

2023-09-14 00:00:00

Mozilla Firefox ESR < 102.15.1

2023-09-13 00:00:00

fedora

[SECURITY] Fedora 39 Update: libwebp-1.3.1-3.fc39

2023-09-15 19:54:26

[SECURITY] Fedora 37 Update: libwebp-1.3.1-3.fc37

2023-09-16 01:41:44

[SECURITY] Fedora 39 Update: firefox-117.0.1-2.fc39

2023-09-17 00:15:26

attackerkb

CVE-2023-4863

2023-09-12 00:00:00

freebsd

graphics/webp heap buffer overflow

2023-09-12 00:00:00

libwebp heap buffer overflow

2023-09-12 00:00:00

prion

Heap overflow

2023-09-12 15:15:00

paloalto

Impact of libwebp Vulnerability CVE-2023-4863

2023-10-02 23:40:00

github

Vulnerable version of libwebp and can be exploited with a malicious source image

2023-10-06 20:46:33

libwebp: OOB write in BuildHuffmanTable

2023-09-12 15:30:20

Imageflow affected by libwebp zero-day and should not be used with malicious source images.

2023-09-27 21:16:16

mageia

Updated libwebp packages fix a security vulnerability

2023-10-03 13:53:29

cgr

CVE-2023-4863 vulnerabilities

2024-05-19 03:07:16

oraclelinux

thunderbird security update

2023-09-19 00:00:00

firefox security update

2023-09-19 00:00:00

libwebp security update

2023-09-20 00:00:00

openvas

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2024-1014)

2024-01-05 00:00:00

Huawei EulerOS: Security Advisory for libwebp (EulerOS-SA-2024-1280)

2024-03-12 00:00:00

openSUSE: Security Advisory for seamonkey (openSUSE-SU-2023:0278-1)

2024-03-04 00:00:00

Certain HP Enterprise LaserJet, HP LaserJet Managed Printers – Potential Buffer Overflow

2024-02-20 00:00:00

cvelist

CVE-2023-4863

2023-09-12 14:24:59

nvd

CVE-2023-4863

2023-09-12 15:15:24

cve

CVE-2023-4863

2023-09-12 15:15:24

githubexploit

Exploit for Out-of-bounds Write in Google Chrome

2023-11-11 06:51:03

Exploit for Out-of-bounds Write in Google Chrome

2023-09-21 05:22:51

Exploit for Out-of-bounds Write in Google Chrome

2023-09-25 10:33:09

debian

[SECURITY] [DLA 3569-1] thunderbird security update

2023-09-17 09:42:33

[SECURITY] [DSA 5497-1] libwebp security update

2023-09-13 21:07:56

[SECURITY] [DLA 3570-1] libwebp security update

2023-09-18 12:07:01

alpinelinux

CVE-2023-4863

2023-09-12 15:15:24

hivepro

Google Addresses Fourth Zero-Day Flaw Exploited by Attackers Wildly

2023-09-12 13:05:09

debiancve

CVE-2023-4863

2023-09-12 15:15:24

almalinux

Important: thunderbird security update

2023-09-19 00:00:00

Important: firefox security update

2023-09-18 00:00:00

Important: libwebp security update

2023-09-20 00:00:00

cloudfoundry

USN-6369-1: libwebp vulnerability | Cloud Foundry

2023-10-12 00:00:00

| Cloud Foundry

2023-10-05 00:00:00

ibm

Security Bulletin: IBM App Connect Enterprise is vulnerable to a heap-based buffer overflow due to electron

2023-10-20 09:35:15

Security Bulletin: IBM Cognos Analytics Cartridge for IBM Cloud Pak for Data 4.8.0 has addressed a security vulnerability (CVE-2023-4863)

2023-11-29 22:25:21

amazon

Important: qt5-qtimageformats

2023-11-09 19:19:00

Important: thunderbird

2023-10-12 15:08:00

Important: libwebp12

2023-10-12 15:08:00

wolfi

CVE-2023-4863 vulnerabilities

2024-06-29 09:08:33

chrome

Stable Channel Update for Desktop

2023-09-11 00:00:00

thn

Mozilla Rushes to Patch WebP Critical Zero-Day Exploit in Firefox and Thunderbird

2023-09-13 01:50:00

ubuntu

Firefox vulnerability

2023-09-14 00:00:00

libwebp vulnerability

2023-09-28 00:00:00

veracode

Heap Buffer Overflow

2023-09-15 13:45:13

Heap Buffer Overflow

2023-09-19 21:25:54

rocky

firefox security update

2023-09-19 12:09:00

cnvd

Google Chrome Buffer Overflow Vulnerability (CNVD-2023-71680)

2023-09-15 00:00:00

ubuntucve

CVE-2023-4863

2023-09-12 00:00:00

mscve

Chromium: CVE-2023-4863 Heap buffer overflow in WebP

2023-09-12 07:00:47

redhatcve

CVE-2023-4863

2023-09-14 14:24:56

redhat

(RHSA-2023:5222) Important: libwebp security update

2023-09-19 07:11:07

ics

Siemens Mendix Studio Pro

2023-11-16 12:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.609 Medium

EPSS

Percentile

97.8%

JSON

Related for GITLAB-9702387154199690A325A702569E6487