Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| chrome | 116.0.5845.187 | - | |
| fedoraproject | fedora | - | - |
| fedoraproject | fedora | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
20
Affected Products
92
References
google / chrome
| - |
| fedoraproject | fedora | - | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
| mozilla | firefox | 102.15.1 | - |
| mozilla | firefox | 117.0.1 | - |
| mozilla | firefox | 115.1.0 - 115.2.1 | - |
| mozilla | thunderbird | 102.15.1 | - |
| mozilla | thunderbird | 115.0 - 115.2.2 | - |
| microsoft | edge_chromium | 116.0.1938.81 | - |
| microsoft | teams | 1.6.00.26463 | - |
| microsoft | teams | 1.6.00.26474 | - |
| microsoft | webp_image_extension | 1.0.62681.0 | - |
| webmproject | libwebp | 1.3.2 | - |
| netapp | active_iq_unified_manager | - | - |
| bentley | seequent_leapfrog | 2023.2 | - |
| bandisoft | honeyview | 5.51 | - |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability
Impact