CVE-2023-5217CISA KEVEPSS p98.2%

CVE-2023-5217Google Chromium libvpx Heap Buffer Overflow Vulnerability

Google / Chromium libvpx

Description

Google Chromium libvpx contains a heap buffer overflow vulnerability in vp8 encoding that allows a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could impact web browsers using libvpx, including but not limited to Google Chrome.

Scoring

EPSS34.40% probability of exploitation · percentile 98.2% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2023-10-02

(incoming)1

TypeTargetConfidenceTier
KEVEntryGoogle Chromium libvpx Heap Buffer Overflow Vulnerabilitykev-cve-2023-52170%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-1861
CVE
Google Chromium WebP Heap-Based Buffer Overflow Vulnerability
CVE
CVE-2025-0999
CVE
Google Chromium V8 Heap Buffer Overflow Vulnerability
CVE
Google Chromium WebRTC Heap Buffer Overflow Vulnerability
CVE
CVE-2026-2314
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.