CVE-2023-5217 · threatengine.sh

Home/CVE/Google Chromium libvpx Heap Buffer Overflow Vulnerability

CVE

CVE-2023-5217

Google Chromium libvpx Heap Buffer Overflow Vulnerability

Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

HIGH · CVSS 8.8 ⚠ CISA KEV EPSS 0.04976

Act now

Listed on CISA KEV (known exploited in the wild)
SSVC exploitation status: active
Public exploit or PoC is available
CVSS base score ≥ 7.0

Sigma rules3 YARA rules0

⬢

Required Remediation

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

⬡

Weakness Classification

CWE-787Out-of-bounds Write

CWE-787Out-of-bounds Write

▤

Affected Products & Versions

15

webmproject libvpx< 1.13.1
microsoft edgeall versions
microsoft edge chromiumall versions
mozilla firefox< 115.3.1
mozilla firefox< 118.0.1
mozilla firefox< 118.1
mozilla thunderbird< 115.3.1
fedoraproject fedoraall versions
Show all 15 affected productsdebian linuxall versions
apple ipados>= 17.0 and < 17.0.3
apple ipadosall versions
apple iphone os>= 17.0 and < 17.0.3
apple iphone osall versions
google chrome< 117.0.5938.132
redhat enterprise linuxall versions

▤

Affected Packages

1

Language-ecosystem packages (from OSV) tied to this CVE, with the version that fixes it - the dependency-level detail NVD doesn’t carry.

npm electron HIGH fixed in 22.3.25

⚠

Public Exploits & PoCs

1

poccrbug.com · 1486441crbug.com

◈

Sigma Hunt Rules

3

Exact rules name this CVE ID. Product rules name an affected product in their title. Related rules cover techniques used by actors who exploited this CVE. Showing the most relevant matches; the complete related set is on the full drill-down.

producthighSQLite Firefox Profile Data DB Access

producthighRunning Chrome VPN Extensions via the Registry 2 VPN Extension

productmediumPotential Chrome Frame Helper DLL Sideloading

See all related Sigma rules for this CVE

▣

Scoring & Timeline

8.8

HIGH · CVSS v3.1 · chrome-cve-admin@google.com

View on NVD

Attack Vector

Network Adjacent Local Physical

Attack Complexity

Low High

Privileges Required

None Low High

User Interaction

None Required

Scope

Unchanged Changed

Confidentiality

None Low High

Integrity

None Low High

Availability

None Low High

Published to NVD28 Sep 2023 · 04:15 PM

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

SSVC triage · cisa-vulnrichment

Exploitation

active

Automatable

no

Technical impact

total

SSVC asks the questions that actually drive patch urgency: is it being exploited, can attacks be automated, and how total is the impact.

⚑

Vendor Advisories

30

usnUSN-7172-1
suse-csafopenSUSE-SU-2024:14572-1
suse-csafopenSUSE-SU-2024:13269-1
suse-csafopenSUSE-SU-2024:13272-1
suse-csafopenSUSE-SU-2024:13274-1
Show all 30 vendor advisoriessuse-csafopenSUSE-SU-2024:13276-1
suse-csafopenSUSE-SU-2024:13277-1
suse-csafopenSUSE-SU-2024:13283-1
suse-csafopenSUSE-SU-2024:13288-1
suse-csafopenSUSE-SU-2024:13367-1
suse-csafopenSUSE-SU-2024:13395-1
suse-csafopenSUSE-SU-2024:13462-1
suse-csafopenSUSE-SU-2024:13484-1
suse-csafopenSUSE-SU-2023:0365-1
suse-csafopenSUSE-SU-2023:0366-1
usnUSN-6403-3
usnUSN-6403-2
suse-csafopenSUSE-SU-2023:0297-1
suse-csafopenSUSE-SU-2023:0298-1
rhsaRHSA-2023:5538Important
rhsaRHSA-2023:5539Important
rhsaRHSA-2023:5536Important
rhsaRHSA-2023:5537Important
rhsaRHSA-2023:5534Important
rhsaRHSA-2023:5535Important
rhsaRHSA-2023:5540Important
suse-csafSUSE-SU-2023:4016-1
rhsaRHSA-2023:5477Important
rhsaRHSA-2023:5475Important
rhsaRHSA-2023:5428Important

🔗

References & Sources

52

Source URLs (vendor pages, mailing lists, write-ups). Exploit/PoC links are in their own section above to avoid duplication.

http://seclists.org/fulldisclosure/2023/Oct/12Mailing ListThird Party Advisory

http://seclists.org/fulldisclosure/2023/Oct/16Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/28/5Mailing ListPatchThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/28/6Mailing ListPatchThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/29/1Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/29/11Mailing ListThird Party Advisory

Show all 52 references

http://www.openwall.com/lists/oss-security/2023/09/29/12Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/29/14Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/29/2Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/29/7Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/29/9Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/30/1Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/30/2Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/30/3Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/30/4Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/09/30/5Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/10/01/1Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/10/01/2Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/10/01/5Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/10/02/6Mailing ListThird Party Advisory

http://www.openwall.com/lists/oss-security/2023/10/03/11Mailing ListThird Party Advisory

https://arstechnica.com/security/2023/09/new-0-day-in-chrome-and-firefox-is-likely-to-plague-other-software/Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=2241191Issue TrackingThird Party Advisory

https://chromereleases.googleblog.com/2023/09/stable-channel-update-for-desktop_27.htmlVendor Advisory

https://github.com/webmproject/libvpx/commit/3fbd1dca6a4d2dad332a2110d646e4ffef36d590Patch

https://github.com/webmproject/libvpx/commit/af6dedd715f4307669366944cca6e0417b290282Patch

https://github.com/webmproject/libvpx/releases/tag/v1.13.1Release Notes

https://github.com/webmproject/libvpx/tagsProduct

https://lists.debian.org/debian-lts-announce/2023/09/msg00038.htmlMailing List

https://lists.debian.org/debian-lts-announce/2023/10/msg00001.htmlMailing List

https://lists.debian.org/debian-lts-announce/2023/10/msg00015.htmlMailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MFWDFJSSIFKWKNOCTQCFUNZWAXUCSS4/Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/55YVCZNAVY3Y5E4DWPWMX2SPKZ2E5SOV/Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AY642Z6JZODQJE7Z62CFREVUHEGCXGPD/Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BCVSHVX2RFBU3RMCUFSATVQEJUFD4Q63/Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CWEJYS5NC7KVFYU3OAMPKQDYN6JQGVK6/Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TE7F54W5O5RS4ZMAAC7YK3CZWQXIDSKB/Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WTRUIS3564P7ZLM2S2IH4Y4KZ327LI4I/Mailing List

https://pastebin.com/TdkC4pDvNot Applicable

https://security-tracker.debian.org/tracker/CVE-2023-5217Third Party Advisory

https://security.gentoo.org/glsa/202310-04Third Party Advisory

https://security.gentoo.org/glsa/202401-34Third Party Advisory

https://stackdiary.com/google-discloses-a-webm-vp8-bug-tracked-as-cve-2023-5217/Third Party Advisory

https://support.apple.com/kb/HT213961Third Party Advisory

https://support.apple.com/kb/HT213972Third Party Advisory

https://twitter.com/maddiestone/status/1707163313711497266Third Party Advisory

https://www.debian.org/security/2023/dsa-5508Mailing List

https://www.debian.org/security/2023/dsa-5509Mailing List

https://www.debian.org/security/2023/dsa-5510Mailing List

https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/Third Party Advisory

https://www.openwall.com/lists/oss-security/2023/09/28/5Mailing ListThird Party Advisory

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-5217US Government Resource

Intelligence Graph · click any node to traverse

CVETechnique ActorTool Family

drag to reposition · click any node to traverse · button top-right enlarges

External lookups - second-class, for what we don’t hold ourselves

NVD CVE.org CISA Vulners Exploit-DB GitHub PoC VulnCheck KEV GreyNoise

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin