Heap Buffer Overflow in libwebp WebP Codec
Advisory ID
WGSA-2023-00008
CVE
CVE-2023-4863
Impact
Critical
Status
Not Applicable
Product Family
Firebox,
Endpoint,
WatchGuard Cloud,
Dimension,
Other Software,
Secure Wi-Fi
Published Date
Updated Date
Workaround Available
False
Summary
On September 11th 2023, Google published an advisory describing a vulnerability in Google Chrome that could allow a remote attacker to potentially execute arbitrary code using a carefully crafted WebP image file. On September 25th, the vulnerability scope was expanded to include the libwebp library used by many applications beyond Google Chrome.
Affected
No WatchGuard products use the affected version of the libwebp library
Resolution
No resolution necessary
Advisory Product List
Product Family
Product Branch
Product List
Firebox
Firebox T (2nd Gen)
T15,
T15-W,
T35,
T35-W,
T35-R,
T55,
T55-W,
T70
Firebox
XTM 8 Series (2nd Gen)
XTM850,
XTM860,
XTM870,
XTM870-F
Firebox
XTM 1500 and 2520
XTM1520-RP,
XTM1525-RP,
XTM2520
Firebox
Firebox T (3rd Gen)
T20,
T20-W,
T40,
T40-W,
T80
Firebox
Firebox T (1st Gen)
T10,
T10-W,
T10-D,
T30,
T30-W,
T50,
T50-W
Firebox
Firebox M (2nd Gen)
M270,
M370,
M470,
M570,
M670
Firebox
Firebox M (1st Gen)
M200,
M300,
M400,
M440,
M500
Firebox
Firebox M (3rd Gen)
M290,
M390,
M590,
M690,
M4800,
M5800
Firebox
XTMv
Small,
Medium,
Large,
Datacenter
Firebox
FireboxV
Small,
Medium,
Large,
XLarge
Firebox
FireboxCloud
Small,
Medium,
Large,
XLarge
Firebox
Firebox T (4th Gen)
NV5,
T25,
T45,
T85
Endpoint
Panda Dome
Essential,
Advanced,
Complete,
Premium
Endpoint
Panda AD360
AD360
Endpoint
WatchGuard EPDR
EPP,
EDR,
EPDR
WatchGuard Cloud
WatchGuard Cloud
WatchGuard Cloud
Dimension
Dimension
Dimension
Other Software
WatchGuard System Manager (WSM)
WSM
Other Software
Authentication Gateway
Authentication Gateway
Secure Wi-Fi
Wi-Fi 6
AP130,
AP330,
AP430CR,
AP432
Secure Wi-Fi
Wi-Fi 4 & 5
AP322,
AP420,
AP125,
AP225W,
AP325,
AP327X