Vulnerabilities > Webmproject > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-21 | CVE-2018-25009 | Out-of-bounds Read vulnerability in multiple products A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE16(). | 9.1 |
| 2021-05-21 | CVE-2018-25010 | Out-of-bounds Read vulnerability in multiple products A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ApplyFilter(). | 9.1 |
| 2021-05-21 | CVE-2018-25011 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16(). | 9.8 |
| 2021-05-21 | CVE-2018-25012 | Out-of-bounds Read vulnerability in multiple products A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in GetLE24(). | 9.1 |
| 2021-05-21 | CVE-2018-25013 | Out-of-bounds Read vulnerability in multiple products A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in ShiftBytes(). | 9.1 |
| 2021-05-21 | CVE-2018-25014 | Use of Uninitialized Resource vulnerability in multiple products A use of uninitialized value was found in libwebp in versions before 1.0.1 in ReadSymbol(). | 9.8 |
| 2021-05-21 | CVE-2020-36328 | Out-of-bounds Write vulnerability in multiple products A flaw was found in libwebp in versions before 1.0.1. | 9.8 |
| 2021-05-21 | CVE-2020-36329 | Use After Free vulnerability in multiple products A flaw was found in libwebp in versions before 1.0.1. | 9.8 |
| 2021-05-21 | CVE-2020-36331 | Out-of-bounds Read vulnerability in multiple products A flaw was found in libwebp in versions before 1.0.1. | 9.1 |
| 2010-11-06 | CVE-2010-4203 | Integer Overflow or Wraparound vulnerability in multiple products WebM libvpx (aka the VP8 Codec SDK) before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via invalid frames. | 9.8 |