Lucene search
K

57 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in TIF format

The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...

6.5CVSS6.7AI score0.01206EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/10 6:6 p.m.27 views

CVE-2026-31797 iccDEV has a heap out-of-bounds read in CTiffImg::ReadLine()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap out-of-bounds read in CTiffImg::ReadLine when iccApplyProfiles processes a crafted TIFF image, causing memory disclosure or crash. This vulnerability is fixed in 2.3.1.5...

6.1CVSS0.0015EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-10338

Malware in sbrugna...

5.5CVSS6.4AI score0.01975EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-6724

Malware in sbrugna...

7.8CVSS7.9AI score0.01301EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7191

Malware in sbrugna...

7.8CVSS7.7AI score0.0099EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-17866

Malware in sbrugna...

7.8CVSS7.7AI score0.03134EPSS
Exploits4References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-0070

Malware in sbrugna...

5.5CVSS6.6AI score0.01865EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 4:34 a.m.16 views

CVE-2023-46587

Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file...

7.8CVSS7.5AI score0.00204EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/03/15 12:0 a.m.5 views

The vulnerability of the Kofax PowerPDF software, which is used for creating, converting, editing, and publishing PDF files, relates to reading data beyond the buffer in memory. This vulnerability allows an attacker to execute arbitrary code.

The vulnerability of the Kofax PowerPDF software for creating, converting, editing, and publishing PDF files lies in the reading of data beyond the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created TIF file...

7.8CVSS7.9AI score0.00415EPSS
Exploits0References5Affected Software1
ATTACKERKB
ATTACKERKB
added 2023/10/27 11:15 p.m.4 views

CVE-2023-46587

Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file...

7.8CVSS7.4AI score0.00204EPSS
Exploits0References2
OSV
OSV
added 2023/10/27 11:15 p.m.4 views

CVE-2023-46587

Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file...

7.8CVSS6.1AI score0.00204EPSS
Exploits0References1
CVE
CVE
added 2023/10/27 12:0 a.m.68 views

CVE-2023-46587

Affected software: XnView Classic v2.51.5. The issue is a Buffer Overflow in the handling of TIF files, enabling a local attacker to execute arbitrary code. Root cause is an overflow in processing crafted TIF input. Impact is arbitrary code execution with local access. Remediation: update to a ne...

7.8CVSS7.7AI score0.00204EPSS
Exploits0References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:1 a.m.3 views

SUSE CVE-2009-5022

Heap-based buffer overflow in tifojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file...

6.8CVSS8.3AI score0.10796EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:23 a.m.4 views

SUSE CVE-2018-17795

The function t2pwritepdf in tiff2pdf.c in LibTIFF 4.0.9 and earlier allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted TIFF file, a similar issue to CVE-2017-9935...

7.8CVSS9.7AI score0.041EPSS
Exploits1References10
OSV
OSV
added 2023/01/26 6:59 p.m.3 views

CVE-2022-42416

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS6.2AI score0.00434EPSS
Exploits0References2
OSV
OSV
added 2022/05/11 3:15 p.m.9 views

AZL-9734 CVE-2022-1623 affecting package libtiff for versions less than 4.4.0-1

LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tiflzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa...

5.5CVSS6.7AI score0.0122EPSS
Exploits1References1
OSV
OSV
added 2021/12/14 12:15 p.m.2 views

CVE-2021-44017

A vulnerability has been identified in JT2Go All versions V13.2.0.5, Teamcenter Visualization All versions V13.2.0.5. The Image.dll is vulnerable to an out of bounds read past the end of an allocated buffer when parsing specially crafted TIF files. An attacker could leverage this vulnerability to...

5.5CVSS5.9AI score0.00957EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2021/08/26 2:0 p.m.25 views

CVE-2020-18774

A float point exception in the printLong function in tagsint.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...

6.5CVSS4.6AI score0.01309EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/08/26 1:33 p.m.28 views

CVE-2020-18773

An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...

6.5CVSS5.5AI score0.01332EPSS
Exploits1References3
OSV
OSV
added 2021/08/23 10:15 p.m.8 views

CVE-2020-18773

An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service DOS via a crafted tif file...

6.5CVSS6.4AI score
Exploits0References2
Rows per page
Query Builder