Lucene search
+L

104 matches found

OSV
OSV
added 2022/10/25 12:0 a.m.5 views

UBUNTU-CVE-2022-3570

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact...

7.7CVSS6.9AI score0.00485EPSS
Exploits1References8
ATTACKERKB
ATTACKERKB
added 2022/10/07 6:15 p.m.4 views

CVE-2021-40162

A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...

7.8CVSS7.3AI score0.00918EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2022/08/29 2:3 p.m.98 views

CVE-2022-0284

A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format TIFF image to convert it into a PICON file format. This issue can potentially lead to a...

7.1CVSS6.6AI score0.00552EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2022/07/29 12:0 a.m.5 views

PT-2022-18652 · Autodesk · Designreview.Exe

Name of the Vulnerable Software and Affected Versions: DesignReview.exe affected versions not specified Description: The issue arises when a maliciously crafted TIFF file is consumed through the DesignReview.exe application, causing it to read beyond allocated boundaries while parsing the TIFF...

7.8CVSS7.5AI score0.00228EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2022/07/16 12:0 a.m.20 views

Fedora: Security Advisory for libtiff (FEDORA-2022-edf7301147)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7AI score
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2022/05/13 7:0 a.m.5 views

ClamAV TIFF File Parsing Denial of Service Vulnerability Affecting Cisco Products: April 2022

...

7.8CVSS7.5AI score0.05477EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/04/03 12:0 a.m.22 views

Fedora: Security Advisory for libtiff (FEDORA-2022-c39720a0ed)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.7CVSS6.8AI score0.01542EPSS
Exploits6References2
CNNVD
CNNVD
added 2022/03/09 12:0 a.m.3 views

Silicon Graphics LibTIFF 缓冲区错误漏洞

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains some command line tools for working with TIFF files. A security vulnerability exists in Silicon Graphics LibTIFF, which stems from an attacker's abili...

7.1CVSS7AI score0.01542EPSS
Exploits1References21
Prion
Prion
added 2022/02/09 11:15 p.m.22 views

Format string

When a user opens a manipulated Tagged Image File Format .tiff, 2d.x3d received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with the...

4.3CVSS6.4AI score0.00885EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2021/12/27 12:0 a.m.34 views

SAP 3D Visual Enterprise Viewer Input Validation Error Vulnerability (CNVD-2022-33131)

SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP Germany. The software supports publishing 2D and 3D scenes in all industry-standard desktop applications and supports separate installations as standalone executables and ActiveX spaces.SAP 3D Visual Enterprise Viewer version 9.0 is...

4.3CVSS1.9AI score0.01021EPSS
Exploits0References1
OSV
OSV
added 2021/12/20 9:15 p.m.5 views

CVE-2021-44183

Adobe Dimension versions 3.4.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim...

3.3CVSS6.1AI score0.01527EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/12/14 4:15 p.m.3 views

CVE-2021-42069

When a user opens manipulated Tagged Image File Format .tif file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application...

4.3CVSS6.7AI score0.01021EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2021/12/14 4:15 p.m.36 views

CVE-2021-42069

When a user opens manipulated Tagged Image File Format .tif file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application...

4.3CVSS0.01021EPSS
Exploits0References3
Prion
Prion
added 2021/12/14 4:15 p.m.21 views

Format string

When a user opens manipulated Tagged Image File Format .tif file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application...

4.3CVSS4AI score0.01021EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/11/10 12:0 a.m.5 views

WildBit Viewer 缓冲区错误漏洞

WildBit Viewer is a compact image viewer with slide show and editor.A buffer overflow vulnerability exists in Editor 0x576b in WildBit Viewer version 6.6, which can be exploited by attackers to cause a denial of service via a specially crafted tiff file...

5.5CVSS5.9AI score0.00669EPSS
Exploits1References3
OSV
OSV
added 2021/08/23 10:15 p.m.4 views

DEBIAN-CVE-2020-18773

An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...

6.5CVSS6.3AI score0.01332EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/07/13 12:0 a.m.5 views

Siemens Jt2go 和 Siemens Teamcenter Visualization 缓冲区错误漏洞

Siemens Jt2go is a JT file viewer.Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios. An out-of-bounds write vulnerability exists in Siemens JT2Go versions prior to 13.2 and Teamcenter Visualization versions prior to 13.2. The...

7.8CVSS5.9AI score0.01574EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/03/11 12:0 a.m.6 views

Pillow 缓冲区错误漏洞

Pillow is a Python-based image processing library.A buffer overflow vulnerability exists in Pillow Tiff image file processing, which can be exploited by remote attackers to submit special file requests that trick users into parsing, which can crash the application or execute arbitrary code in the...

9.8CVSS6.5AI score0.02281EPSS
Exploits0References9
CNVD
CNVD
added 2021/03/10 12:0 a.m.38 views

Libtiff Integer Overflow Vulnerability

Libtiff is a library for reading and writing Tagged Image File Format abbreviated TIFF files. An integer overflow vulnerability exists in tifgetimage.c in libtiff. An attacker can exploit this vulnerability to inject and execute arbitrary code via specially crafted TIFF files...

7.8CVSS7.3AI score0.01922EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/09 12:0 a.m.12 views

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a multi-platform, multi-language document imaging developer toolkit. An out-of-bounds write vulnerability exists in the TIFF parser of Accusoft ImageGear 19.8. An attacker can exploit this vulnerability via specially crafted files to achieve code execution...

9.8CVSS7.4AI score0.01855EPSS
Exploits1References2
Rows per page
Query Builder