CVE-2023-1999

MEDIUM

libwebp 0.4.2-1.3.0 - Use-After-Free in ApplyFiltersAndEncode

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-1999. PoCs published by Pazhanivelmani.

AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2023-1999, targeting a vulnerability in the WebP codec library. The exploit includes modified source files to demonstrate the vulnerability, likely involving heap-based buffer overflows in the decoding process.

Description

There exists a use after free/double free in libwebp. An attacker can use the ApplyFiltersAndEncode() function and loop through to free best.bw and assign best = trial pointer. The second loop will then return 0 because of an Out of memory error in VP8 encoder, the pointer is still assigned to trial and the AddressSanitizer will attempt a double free.

Exploits (1)

nomisec WORKING POC
by Pazhanivelmani · poc
https://github.com/Pazhanivelmani/webp_Android10_r33_CVE-2023-1999

This repository contains a proof-of-concept exploit for CVE-2023-1999, targeting a vulnerability in the WebP codec library. The exploit includes modified source files to demonstrate the vulnerability, likely involving heap-based buffer overflows in the decoding process.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: WebP codec library (libwebp) on Android 10 r33
No auth needed
Prerequisites: Access to a vulnerable version of the WebP codec library · Ability to deliver a maliciously crafted WebP image to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 5.3
EPSS 0.0095
EPSS Percentile 56.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-415 CWE-416
Status published
Products (1)
webmproject/libwebp 0.4.2 - 1.3.1
Published Jun 20, 2023
Tracked Since Feb 18, 2026