Statements (26)
Predicate | Object |
---|---|
gptkbp:instanceOf |
gptkb:security
|
gptkbp:affectedComponent |
gptkb:libwebp
|
gptkbp:affectedSoftware |
gptkb:Google_Chrome
gptkb:Mozilla_Firefox gptkb:Microsoft_Edge gptkb:Apple_Safari |
gptkbp:citation |
https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/
https://security.googleblog.com/2023/09/a-note-on-cve-2023-4863.html https://nvd.nist.gov/vuln/detail/CVE-2023-4863 https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html |
gptkbp:cweId |
CWE-122
|
gptkbp:describes |
Heap buffer overflow in WebP image format in Google Chrome prior to 116.0.5845.187 and other products.
|
gptkbp:exploitStatus |
Exploited in the wild
|
gptkbp:hasCVSSScore |
8.8
|
gptkbp:hasSeverity |
High
|
https://www.w3.org/2000/01/rdf-schema#label |
CVE-2023-4863
|
gptkbp:patchedBy |
Google Chrome 116.0.5845.187
Microsoft Edge 116.0.1938.81 Mozilla Firefox 117.0.1 libwebp 1.3.2 |
gptkbp:publicationDate |
2023-09-11
|
gptkbp:vectorFor |
Remote
|
gptkbp:vulnerableTo |
gptkb:CVE-2023-4863
heap buffer overflow |
gptkbp:bfsParent |
gptkb:APT3
|
gptkbp:bfsLayer |
7
|