CVE-2023-4863CISA KEVEPSS p100.0%

CVE-2023-4863Google Chromium WebP Heap-Based Buffer Overflow Vulnerability

Google / Chromium WebP

Description

Google Chromium WebP contains a heap-based buffer overflow vulnerability that allows a remote attacker to perform an out-of-bounds memory write via a crafted HTML page. This vulnerability can affect applications that use the WebP Codec.

Scoring

EPSS99.74% probability of exploitation · percentile 100.0% · 2026-06-16T12:03:06Z

CISA KEV entry

Added to KEV: 2023-09-13

(incoming)1

TypeTargetConfidenceTier
KEVEntryGoogle Chromium WebP Heap-Based Buffer Overflow Vulnerabilitykev-cve-2023-48630%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Google Chromium WebRTC Heap Buffer Overflow Vulnerability
CVE
Google Chromium libvpx Heap Buffer Overflow Vulnerability
CVE
CVE-2026-3544
CVE
CVE-2026-2314
CVE
CVE-2026-2650
CVE
CVE-2026-4673
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.