# CVE-2023-4863

### NIST Link

[https://nvd.nist.gov/vuln/detail/CVE-2022-21449](https://nvd.nist.gov/vuln/detail/CVE-2023-4863)

### Description

Heap buffer overflow in WebP in Google Chrome prior to 116.0.5845.187 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical).

### Impact to Keeper

Keeper Security may be impacted by this vulnerability in the Desktop App since we use the Electron framework. As a precaution, we immediately updated to Electron framework version to v22.3.24 and published [Keeper Desktop version 16.10.8](https://docs.keeper.io/en/release-notes/desktop/web-vault-+-desktop-app/vault-release-16.10.8).

If you have any questions, please email us at <security@keepersecurity.com>.