Known Vulnerabilities for products from Webmproject
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Webmproject".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-44488 json | VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. | 7.5 - HIGH | 2023-09-30 | 2023-11-16 |
| CVE-2023-5217 json | Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote at... | 8.8 - HIGH | 2023-09-28 | 2024-02-02 |
| CVE-2023-5129 json | ** REJECT ** This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. Duplicate of CVE-2023-4863. | Not Provided | 2023-09-25 | 2023-11-07 |
| CVE-2023-4863 json | Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perfo... | 8.8 - HIGH | 2023-09-12 | 2024-01-07 |
| CVE-2023-1999 json | There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop thro... | 7.5 - HIGH | 2023-06-20 | 2023-09-17 |
| CVE-2020-36332 json | A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. Th... | 7.5 - HIGH | 2021-05-21 | 2023-11-07 |
| CVE-2020-36331 json | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highes... | 9.1 - CRITICAL | 2021-05-21 | 2023-01-09 |
| CVE-2020-36330 json | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The h... | 9.1 - CRITICAL | 2021-05-21 | 2021-11-30 |
| CVE-2020-36329 json | A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The ... | 9.8 - CRITICAL | 2021-05-21 | 2023-01-09 |
| CVE-2020-36328 json | A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible ... | 9.8 - CRITICAL | 2021-05-21 | 2023-01-09 |
| CVE-2019-9746 json | In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.... | 7.5 - HIGH | 2019-03-13 | 2019-03-14 |
| CVE-2018-25014 json | A flaw was found in libwebp in versions before 1.0.1. An unitialized variable is used in function ReadSymbol. The highest thr... | 9.8 - CRITICAL | 2021-05-21 | 2023-02-09 |
| CVE-2018-25013 json | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ShiftBytes. The highest thr... | 9.1 - CRITICAL | 2021-05-21 | 2023-02-09 |
| CVE-2018-25012 json | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The ... | 9.1 - CRITICAL | 2021-05-21 | 2023-02-28 |
| CVE-2018-25011 json | A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow was found in PutLE16(). The highest threat... | 9.8 - CRITICAL | 2021-05-21 | 2023-02-10 |
| CVE-2018-25010 json | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ApplyFilter. The highest th... | 9.1 - CRITICAL | 2021-05-21 | 2023-02-10 |
| CVE-2018-25009 json | A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The ... | 9.1 - CRITICAL | 2021-05-21 | 2023-02-17 |
| CVE-2018-19212 json | In libwebm through 2018-10-03, there is an abort caused by libwebm::Webm2Pes::InitWebmParser() that will lead to a DoS attack... | 6.5 - MEDIUM | 2018-11-12 | 2020-08-24 |
| CVE-2018-6548 json | A use-after-free issue was discovered in libwebm through 2018-02-02. If a Vp9HeaderParser was initialized once before, its pr... | 9.8 - CRITICAL | 2018-02-02 | 2018-02-21 |
| CVE-2018-6406 json | The function ParseVP9SuperFrameIndex in common/libwebm_util.cc in libwebm through 2018-01-30 does not validate the child_fram... | 8.8 - HIGH | 2018-01-30 | 2019-10-03 |