all InfoSec news
Resolving WebP Zero-day Vulnerability CVE-2023-4863
Sept. 29, 2023, 2:12 p.m. | Nova Trauben@veracode.com (Nova Trauben)
Application Security Research, News, and Education Blog www.veracode.com
Webp is the backbone of the webp extension. Any image that is saved to the webp image format most likely was created using the webp library. The library was released in 2010 by Google.
The History of the Webp Vulnerability CVE-2023-4863
The first CVE for this webp vulnerability was disclosed in CVE-2023-41061, but note how the description does not mention the root of the issue anywhere. Then Google released CVE-2023-4863, which was the first actual mention of …
cve cve-2023-41061 cve-2023-4863 extension google history image library vulnerability webp zero-day zero-day vulnerability
More from www.veracode.com / Application Security Research, News, and Education Blog
Enhancing Developer Efficiency With AI-Powered Remediation
4 days, 9 hours ago |
www.veracode.com
Veracode Customers Shielded from NVD Disruptions
4 weeks, 2 days ago |
www.veracode.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Salesforce Solution Consultant
@ BeyondTrust | Remote United States
Divisional Deputy City Solicitor, Public Safety Compliance Counsel - Compliance and Legislation Unit
@ City of Philadelphia | Philadelphia, PA, United States
Security Engineer, IT IAM, EIS
@ Micron Technology | Hyderabad - Skyview, India
Security Analyst
@ Northwestern Memorial Healthcare | Chicago, IL, United States
Werkstudent Cybersecurity (m/w/d)
@ Brose Group | Bamberg, DE, 96052