VulnerableCode Package Details - pkg:nuget/SkiaSharp@2.0.0

Search for packages

Package details: pkg:nuget/SkiaSharp@2.0.0

Essentials
History (2)

purl	pkg:nuget/SkiaSharp@2.0.0
Tags	Ghost

Next non-vulnerable version	2.88.6
Latest non-vulnerable version	2.88.6
Risk	10.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-pe8x-79nr-3qg4 Aliases: CVE-2023-4863 GHSA-j7hp-h8jx-5ppr	Opening a malicious WebP image could lead to a heap buffer overflow in the content process. We are aware of this issue being exploited in other products in the wild. Note: This advisory was previously also tracked as CVE-2023-5129.	2.88.6 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T13:42:05.861401+00:00	GHSA Importer	Affected by	VCID-pe8x-79nr-3qg4	https://github.com/advisories/GHSA-j7hp-h8jx-5ppr	37.0.0
2025-07-31T09:29:57.439962+00:00	GitLab Importer	Affected by	VCID-pe8x-79nr-3qg4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/nuget/SkiaSharp/CVE-2023-4863.yml	37.0.0