Vulnerabilities > Webmproject > Libwebp > 0.4.1

DATE CVE VULNERABILITY TITLE RISK
2023-09-12 CVE-2023-4863 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
8.8
2021-05-21 CVE-2018-25009 Out-of-bounds Read vulnerability in multiple products
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16().
network
low complexity
webmproject redhat CWE-125
critical
9.1
2021-05-21 CVE-2018-25010 Out-of-bounds Read vulnerability in multiple products
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter().
network
low complexity
webmproject redhat CWE-125
critical
9.1
2021-05-21 CVE-2018-25011 Out-of-bounds Write vulnerability in multiple products
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().
network
low complexity
webmproject redhat CWE-787
critical
9.8
2021-05-21 CVE-2018-25012 Out-of-bounds Read vulnerability in multiple products
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24().
network
low complexity
webmproject redhat CWE-125
critical
9.1
2021-05-21 CVE-2018-25013 Out-of-bounds Read vulnerability in multiple products
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes().
network
low complexity
webmproject redhat CWE-125
critical
9.1
2021-05-21 CVE-2018-25014 Use of Uninitialized Resource vulnerability in multiple products
A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol().
network
low complexity
webmproject redhat CWE-908
critical
9.8
2021-05-21 CVE-2020-36328 Out-of-bounds Write vulnerability in multiple products
A flaw was found in libwebp in versions before 1.0.1.
network
low complexity
webmproject redhat netapp debian apple CWE-787
critical
9.8
2021-05-21 CVE-2020-36329 Use After Free vulnerability in multiple products
A flaw was found in libwebp in versions before 1.0.1.
network
low complexity
webmproject redhat netapp debian apple CWE-416
critical
9.8
2021-05-21 CVE-2020-36330 Out-of-bounds Read vulnerability in multiple products
A flaw was found in libwebp in versions before 1.0.1.
network
low complexity
webmproject debian redhat netapp apple CWE-125
6.4