Splunk Statement on CVE-2023-4863 libwebp Vulnerability
Advisory ID: SVD-2023-1001
CVE ID: Multiple
Last Update: 2023-10-06
In early September 2023, Google disclosed a High-rated vulnerability, CVE-2023-4863, that affects Google Chrome and the libwebp library, which is part of the WebP image codec.
Splunk has determined that CVE-2023-4863 does not affect Splunk products. If you have a product in your environment that CVE-2023-4863 does affect, upgrade the product per the recommendations from the product vendor.
None. CVE-2023-4863 does not affect Splunk products.
Mitigations and Workarounds