Vulnerabilities > CVE-2023-5217 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH

Summary

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Vulnerable Configurations

Part Description Count
Application
Webmproject
10
Application
Google
1
Application
Mozilla
1308
Application
Microsoft
4
OS
Fedoraproject
3
OS
Debian
3
OS
Apple
4

Common Weakness Enumeration (CWE)

References