Does pega use libwebp? IS Pega platform impacted by " CVE-2023-5129" and "CVE-2023-4863" Vulnerability.

herr_reddy · September 29, 2023, 12:59pm

Are any Pega platform version impacted by libwebp vulnerability?

MarijeSchillern · September 29, 2023, 5:50pm

@reddypradeep

Regarding CVE-2023-4863 (formerly CVE-2023-5129): libwebp critical vulnerability, our product does not use the vulnerable library and we are therefore not impacted.

If you have questions about this update please raise a support ticket via the MSP and let us know the INC id.

Conversation		Replies	Views
Code scanning for third party Packages General pega-platform , lead-system-architect , security , installation-and-deployment , cross-industry	1	248	March 21, 2022
CVE-2024-20353 General pega-platform , security	5	102	May 15, 2024
Vulnerability testing process for application on premise General pega-platform , solutions-engineer , security , testing-applications , performance , 8-8-5	5	249	December 18, 2024
Pent test finding for Vulnerable software in Pega application General security , data-integration , testing-applications , 8-7-4	1	94	May 15, 2024
Pega Blueprint Error - Exception processing blueprint - Decryption with keystore not supported Blueprint and App Design	3	121	October 17, 2025

Does pega use libwebp? IS Pega platform impacted by " CVE-2023-5129" and "CVE-2023-4863" Vulnerability.

Related topics