Vulnerabilities > CVE-2023-4863 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
google
fedoraproject
debian
mozilla
microsoft
webmproject
CWE-787
NVD
Published: 2023-09-12
Updated: 2024-01-07

Summary

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

Vulnerable Configurations

Part Description Count
Application
Google
9092
Application
Mozilla
1302
Application
Microsoft
68
Application
Webmproject
39
OS
Fedoraproject
3
OS
Debian
3

Common Weakness Enumeration (CWE)

Related news

References