2023-09-12 16:00:29 +00:00
{
"id" : "CVE-2023-4863" ,
"sourceIdentifier" : "chrome-cve-admin@google.com" ,
"published" : "2023-09-12T15:15:24.327" ,
2025-02-03 15:04:39 +00:00
"lastModified" : "2025-02-03T14:15:37.023" ,
"vulnStatus" : "Modified" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2023-09-12 16:00:29 +00:00
"descriptions" : [
{
"lang" : "en" ,
2023-09-27 22:00:28 +00:00
"value" : "Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)"
2023-09-15 23:55:28 +00:00
} ,
{
"lang" : "es" ,
2023-09-28 20:00:29 +00:00
"value" : "El desbordamiento del b\u00fafer de memoria en libwebp en Google Chrome anterior a 116.0.5845.187 y libwebp 1.3.2 permit\u00eda a un atacante remoto realizar una escritura en memoria fuera de los l\u00edmites a trav\u00e9s de una p\u00e1gina HTML manipulada. (Severidad de seguridad de Chromium: cr\u00edtica)"
2023-09-12 16:00:29 +00:00
}
] ,
2023-09-18 18:00:28 +00:00
"metrics" : {
"cvssMetricV31" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" ,
2024-12-08 03:06:42 +00:00
"baseScore" : 8.8 ,
"baseSeverity" : "HIGH" ,
2023-09-18 18:00:28 +00:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "REQUIRED" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "HIGH"
2023-09-18 18:00:28 +00:00
} ,
"exploitabilityScore" : 2.8 ,
"impactScore" : 5.9
2025-02-03 15:04:39 +00:00
} ,
{
"source" : "134c704f-9b21-4f2e-91b3-4a467353bcc0" ,
"type" : "Secondary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" ,
"baseScore" : 8.8 ,
"baseSeverity" : "HIGH" ,
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "REQUIRED" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "HIGH" ,
"availabilityImpact" : "HIGH"
} ,
"exploitabilityScore" : 2.8 ,
"impactScore" : 5.9
2023-09-18 18:00:28 +00:00
}
]
} ,
2024-12-08 03:06:42 +00:00
"cisaExploitAdd" : "2023-09-13" ,
"cisaActionDue" : "2023-10-04" ,
"cisaRequiredAction" : "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable." ,
"cisaVulnerabilityName" : "Google Chromium WebP Heap-Based Buffer Overflow Vulnerability" ,
2023-09-18 18:00:28 +00:00
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-787"
}
]
2025-02-03 15:04:39 +00:00
} ,
{
"source" : "134c704f-9b21-4f2e-91b3-4a467353bcc0" ,
"type" : "Secondary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-787"
}
]
2023-09-18 18:00:28 +00:00
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "116.0.5845.187" ,
"matchCriteriaId" : "856C1821-5D22-4A4E-859D-8F5305255AB7"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E30D0E6F-4AE8-4284-8716-991DFA48CC5D"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B8EDB836-4E6A-4B71-B9B2-AA3E03E0F646"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FA6FEEC2-9F11-4643-8827-749718254FED"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "46D69DCC-AE4D-4EA5-861C-D60951444C6C"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
2024-12-20 21:03:53 +00:00
"criteria" : "cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*" ,
"versionEndExcluding" : "102.15.1" ,
"matchCriteriaId" : "54B8855E-19B9-4D20-9B93-A5219F077335"
2023-09-18 18:00:28 +00:00
} ,
{
"vulnerable" : true ,
2024-12-20 21:03:53 +00:00
"criteria" : "cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*" ,
"versionEndExcluding" : "117.0.1" ,
"matchCriteriaId" : "FBA8858E-AB6C-4708-820D-3F9D8D5A077F"
2023-09-18 18:00:28 +00:00
} ,
{
"vulnerable" : true ,
2024-12-20 21:03:53 +00:00
"criteria" : "cpe:2.3:a:mozilla:firefox:*:*:*:*:esr:*:*:*" ,
"versionStartIncluding" : "115.1.0" ,
2023-09-18 18:00:28 +00:00
"versionEndExcluding" : "115.2.1" ,
2024-12-20 21:03:53 +00:00
"matchCriteriaId" : "6C494574-4187-4BC7-816B-6C1C288D711E"
2023-09-18 18:00:28 +00:00
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "102.15.1" ,
"matchCriteriaId" : "A073724D-52BD-4426-B58D-7A8BD24B8F8E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "115.0" ,
"versionEndExcluding" : "115.2.2" ,
"matchCriteriaId" : "952BEC0C-2DB0-476A-AF62-1269F8635B4A"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
2024-07-31 20:03:11 +00:00
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*" ,
2024-12-20 21:03:53 +00:00
"versionEndExcluding" : "116.0.1938.81" ,
"matchCriteriaId" : "0C8F8BD1-1D13-4605-BF19-E4292E2D6A00"
2024-07-31 20:03:11 +00:00
} ,
{
"vulnerable" : true ,
2024-12-20 21:03:53 +00:00
"criteria" : "cpe:2.3:a:microsoft:teams:*:*:*:*:*:macos:*:*" ,
"versionEndExcluding" : "1.6.00.26463" ,
"matchCriteriaId" : "11C16818-7453-46CB-89C2-2A4D4452A198"
2024-07-31 20:03:11 +00:00
} ,
{
"vulnerable" : true ,
2024-12-20 21:03:53 +00:00
"criteria" : "cpe:2.3:a:microsoft:teams:*:*:*:*:desktop:*:*:*" ,
"versionEndExcluding" : "1.6.00.26474" ,
"matchCriteriaId" : "46625A28-312D-4406-87AE-8A7C93222A45"
2024-07-31 20:03:11 +00:00
} ,
{
"vulnerable" : true ,
2024-12-20 21:03:53 +00:00
"criteria" : "cpe:2.3:a:microsoft:webp_image_extension:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.0.62681.0" ,
"matchCriteriaId" : "201D3850-75A4-4CB4-A312-B01BF51C7C8A"
2023-09-18 18:00:28 +00:00
}
]
}
]
2023-09-19 18:00:28 +00:00
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:webmproject:libwebp:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "1.3.2" ,
"matchCriteriaId" : "2804DDE4-B0A4-4B7F-A318-F491B6316B34"
}
]
}
]
2024-06-27 20:03:12 +00:00
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*" ,
"matchCriteriaId" : "3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"
}
]
}
]
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:bentley:seequent_leapfrog:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "2023.2" ,
"matchCriteriaId" : "E50A797C-2C6C-46A5-A9D0-8CD877EBA3CD"
}
]
}
]
2024-12-20 21:03:53 +00:00
} ,
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:bandisoft:honeyview:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "5.51" ,
"matchCriteriaId" : "A9D1BE06-A20B-43F3-B78D-21F2FF20026C"
}
]
}
]
2023-09-18 18:00:28 +00:00
}
] ,
2023-09-12 16:00:29 +00:00
"references" : [
2023-09-22 02:00:28 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/21/4" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 02:00:28 +00:00
} ,
2023-09-22 10:00:28 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/1" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 10:00:28 +00:00
} ,
2023-09-22 16:00:28 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/3" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 16:00:28 +00:00
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/4" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 16:00:28 +00:00
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/5" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 16:00:28 +00:00
} ,
2023-09-22 20:00:28 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/6" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 20:00:28 +00:00
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/7" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 20:00:28 +00:00
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/8" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-22 20:00:28 +00:00
} ,
2023-09-27 16:00:29 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/26/1" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-27 16:00:29 +00:00
} ,
2023-09-27 22:00:28 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/26/7" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-27 22:00:28 +00:00
} ,
2023-09-28 14:00:28 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/28/1" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-28 14:00:28 +00:00
} ,
2023-09-28 16:00:29 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/28/2" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-28 16:00:29 +00:00
} ,
2023-09-28 20:00:29 +00:00
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/28/4" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Mailing List"
]
2023-09-28 20:00:29 +00:00
} ,
2023-09-18 10:00:30 +00:00
{
"url" : "https://adamcaudill.com/2023/09/14/whose-cve-is-it-anyway/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2023-09-18 10:00:30 +00:00
} ,
2023-09-22 06:00:29 +00:00
{
"url" : "https://blog.isosceles.com/the-webp-0day/" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Exploit" ,
"Third Party Advisory"
]
2023-09-22 06:00:29 +00:00
} ,
2023-09-13 18:00:29 +00:00
{
"url" : "https://bugzilla.suse.com/show_bug.cgi?id=1215231" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Issue Tracking" ,
"Third Party Advisory"
]
2023-09-13 18:00:29 +00:00
} ,
2023-09-12 16:00:29 +00:00
{
"url" : "https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Vendor Advisory"
]
2023-09-12 16:00:29 +00:00
} ,
{
"url" : "https://crbug.com/1479274" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Issue Tracking" ,
"Vendor Advisory"
]
2023-09-13 18:00:29 +00:00
} ,
{
"url" : "https://en.bandisoft.com/honeyview/history/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Release Notes"
2023-09-18 18:00:28 +00:00
]
2023-09-13 18:00:29 +00:00
} ,
{
"url" : "https://github.com/webmproject/libwebp/commit/902bc9190331343b2017211debcec8d2ab87e17a" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Patch"
]
2023-09-13 18:00:29 +00:00
} ,
2023-09-18 10:00:30 +00:00
{
"url" : "https://github.com/webmproject/libwebp/releases/tag/v1.3.2" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Release Notes"
]
2023-09-18 10:00:30 +00:00
} ,
2023-09-16 12:00:27 +00:00
{
"url" : "https://lists.debian.org/debian-lts-announce/2023/09/msg00015.html" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2025-02-03 15:04:39 +00:00
"Mailing List" ,
"Third Party Advisory"
2023-09-18 18:00:28 +00:00
]
2023-09-16 12:00:27 +00:00
} ,
2023-09-17 14:00:28 +00:00
{
"url" : "https://lists.debian.org/debian-lts-announce/2023/09/msg00016.html" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2025-02-03 15:04:39 +00:00
"Mailing List" ,
"Third Party Advisory"
2023-09-18 18:00:28 +00:00
]
2023-09-17 14:00:28 +00:00
} ,
2023-09-18 16:00:28 +00:00
{
"url" : "https://lists.debian.org/debian-lts-announce/2023/09/msg00017.html" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2025-02-03 15:04:39 +00:00
"Mailing List" ,
"Third Party Advisory"
2023-09-18 18:00:28 +00:00
]
2023-09-18 16:00:28 +00:00
} ,
2023-09-18 06:00:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-18 06:00:28 +00:00
} ,
2023-09-15 23:55:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FYYKLG6CRGEDTNRBSU26EEWAO6D6U645/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-15 23:55:28 +00:00
} ,
2023-09-21 04:00:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3/" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-06-27 20:03:12 +00:00
]
2023-09-21 04:00:28 +00:00
} ,
2023-09-15 06:00:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OZDGWWMJREPAGKWCJKSCM4WYLANSKIFX/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-15 06:00:28 +00:00
} ,
2023-09-16 06:00:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PYZV7TMKF4QHZ54SFJX54BDN52VHGGCX/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-16 06:00:28 +00:00
} ,
2023-09-17 04:00:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WHOLML7N2G5KCAZXFWC5IDFFHSQS5SDB/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-17 04:00:28 +00:00
} ,
2023-10-02 04:00:28 +00:00
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-06-27 20:03:12 +00:00
]
2023-10-02 04:00:28 +00:00
} ,
2023-09-13 18:00:29 +00:00
{
"url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4863" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Patch" ,
2024-12-20 21:03:53 +00:00
"Third Party Advisory"
2023-09-18 18:00:28 +00:00
]
2023-09-13 18:00:29 +00:00
} ,
{
"url" : "https://news.ycombinator.com/item?id=37478403" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Exploit" ,
"Third Party Advisory"
]
2023-09-13 18:00:29 +00:00
} ,
{
"url" : "https://security-tracker.debian.org/tracker/CVE-2023-4863" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Issue Tracking" ,
"Third Party Advisory"
]
2023-09-13 18:00:29 +00:00
} ,
2023-09-17 10:00:28 +00:00
{
"url" : "https://security.gentoo.org/glsa/202309-05" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2023-09-17 10:00:28 +00:00
} ,
2024-01-07 13:00:28 +00:00
{
"url" : "https://security.gentoo.org/glsa/202401-10" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2024-01-07 13:00:28 +00:00
} ,
2023-09-29 23:55:27 +00:00
{
"url" : "https://security.netapp.com/advisory/ntap-20230929-0011/" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2023-09-29 23:55:27 +00:00
} ,
2023-10-29 09:06:41 +00:00
{
"url" : "https://sethmlarson.dev/security-developer-in-residence-weekly-report-16" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Exploit"
]
2023-10-29 09:06:41 +00:00
} ,
2023-09-13 18:00:29 +00:00
{
"url" : "https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Exploit" ,
"Third Party Advisory"
]
2023-09-13 18:00:29 +00:00
} ,
2023-10-29 09:06:41 +00:00
{
"url" : "https://www.bentley.com/advisories/be-2023-0001/" ,
2024-06-27 20:03:12 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2023-10-29 09:06:41 +00:00
} ,
2023-09-13 18:00:29 +00:00
{
"url" : "https://www.bleepingcomputer.com/news/google/google-fixes-another-chrome-zero-day-bug-exploited-in-attacks/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2023-09-13 18:00:29 +00:00
} ,
2023-09-14 22:00:30 +00:00
{
"url" : "https://www.debian.org/security/2023/dsa-5496" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-14 22:00:30 +00:00
} ,
{
"url" : "https://www.debian.org/security/2023/dsa-5497" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2023-09-18 18:00:28 +00:00
]
2023-09-14 22:00:30 +00:00
} ,
2023-09-17 10:00:28 +00:00
{
"url" : "https://www.debian.org/security/2023/dsa-5498" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
2025-02-03 15:04:39 +00:00
"Mailing List" ,
2023-09-18 18:00:28 +00:00
"Third Party Advisory"
]
2023-09-17 10:00:28 +00:00
} ,
2023-09-13 18:00:29 +00:00
{
"url" : "https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/" ,
2023-09-18 18:00:28 +00:00
"source" : "chrome-cve-admin@google.com" ,
"tags" : [
"Third Party Advisory"
]
2024-12-08 03:06:42 +00:00
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/21/4" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/1" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/3" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/4" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/5" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/6" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/7" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/22/8" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/26/1" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/26/7" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/28/1" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/28/2" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "http://www.openwall.com/lists/oss-security/2023/09/28/4" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List"
]
} ,
{
"url" : "https://adamcaudill.com/2023/09/14/whose-cve-is-it-anyway/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://blog.isosceles.com/the-webp-0day/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Exploit" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://bugzilla.suse.com/show_bug.cgi?id=1215231" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Issue Tracking" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_11.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "https://crbug.com/1479274" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Issue Tracking" ,
"Vendor Advisory"
]
} ,
{
"url" : "https://en.bandisoft.com/honeyview/history/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Release Notes"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://github.com/webmproject/libwebp/commit/902bc9190331343b2017211debcec8d2ab87e17a" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Patch"
]
} ,
{
"url" : "https://github.com/webmproject/libwebp/releases/tag/v1.3.2" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Release Notes"
]
} ,
{
"url" : "https://lists.debian.org/debian-lts-announce/2023/09/msg00015.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://lists.debian.org/debian-lts-announce/2023/09/msg00016.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://lists.debian.org/debian-lts-announce/2023/09/msg00017.html" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Mailing List" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T655QF7CQ3DYAMPFV7IECQYGDEUIVVT/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FYYKLG6CRGEDTNRBSU26EEWAO6D6U645/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KUQ7CTX3W372X3UY56VVNAHCH6H2F4X3/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OZDGWWMJREPAGKWCJKSCM4WYLANSKIFX/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PYZV7TMKF4QHZ54SFJX54BDN52VHGGCX/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WHOLML7N2G5KCAZXFWC5IDFFHSQS5SDB/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4863" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Patch" ,
2024-12-20 21:03:53 +00:00
"Third Party Advisory"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://news.ycombinator.com/item?id=37478403" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2025-02-03 15:04:39 +00:00
"Exploit" ,
"Third Party Advisory"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://security-tracker.debian.org/tracker/CVE-2023-4863" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Issue Tracking" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://security.gentoo.org/glsa/202309-05" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://security.gentoo.org/glsa/202401-10" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://security.netapp.com/advisory/ntap-20230929-0011/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://sethmlarson.dev/security-developer-in-residence-weekly-report-16" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Exploit"
]
} ,
{
"url" : "https://stackdiary.com/critical-vulnerability-in-webp-codec-cve-2023-4863/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Exploit" ,
"Third Party Advisory"
]
} ,
{
"url" : "https://www.bentley.com/advisories/be-2023-0001/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://www.bleepingcomputer.com/news/google/google-fixes-another-chrome-zero-day-bug-exploited-in-attacks/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://www.debian.org/security/2023/dsa-5496" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://www.debian.org/security/2023/dsa-5497" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2024-12-20 21:03:53 +00:00
"Mailing List"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://www.debian.org/security/2023/dsa-5498" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
2025-02-03 15:04:39 +00:00
"Mailing List" ,
"Third Party Advisory"
2024-12-08 03:06:42 +00:00
]
} ,
{
"url" : "https://www.mozilla.org/en-US/security/advisories/mfsa2023-40/" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Third Party Advisory"
]
} ,
{
"url" : "https://www.vicarius.io/vsociety/posts/zero-day-webp-vulnerability-cve-2023-4863" ,
2024-12-20 21:03:53 +00:00
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Exploit" ,
"Third Party Advisory"
]
2023-09-12 16:00:29 +00:00
}
]
}
