"Vulnerability in Popular 'libwebp' Code More Widespread Than Expected"

Cybersecurity experts warn that the scope of a previously disclosed vulnerability impacting various web applications is broader than initially reported. Last week, Google disclosed a vulnerability affecting its Chrome web browser, which was initially tracked as CVE-2023-4863. Before researchers delved deeper into the matter and traced the vulnerability to the open-source libwebp library, other browsers began to issue warnings about the issue. Multiple browsers, including Chrome, Mozilla's Firefox, and Microsoft Edge, use the library, which provides code for rendering images in the WebP format. This week, Google gave the issue a new number, CVE-2023-5129, and marked the vulnerability with the highest CVSS severity rating. Researchers at Rezilion said the vulnerability's scope is much wider than initially thought, impacting millions of applications worldwide. This article continues to discuss the libwebp vulnerability.

The Record reports "Vulnerability in Popular 'libwebp' Code More Widespread Than Expected"

Submitted by grigby1