Lucene search
+L

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-25434

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215. CVE-2023-25434 Note that Nessus relies on the...

8.8CVSS6.7AI score0.00843EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/07/24 12:0 a.m.21 views

Photon OS 4.0: Libtiff PHSA-2023-4.0-0417

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

8.8CVSS6.7AI score0.01188EPSS
Exploits15References17
OSV
OSV
added 2023/10/18 1:45 p.m.2 views

BELL-CVE-2023-25434

Bulletin has no description...

8.8CVSS6.8AI score0.00843EPSS
Exploits1References1
CBLMariner
CBLMariner
added 2023/08/03 2:51 a.m.24 views

CVE-2023-25434 affecting package libtiff for versions less than 4.5.1-1

CVE-2023-25434 affecting package libtiff for versions less than 4.5.1-1. An upgraded version of the package is available that resolves this issue...

8.8CVSS7AI score0.00843EPSS
Exploits1
CBLMariner
CBLMariner
added 2023/07/28 11:16 p.m.14 views

CVE-2023-25434 affecting package libtiff 4.5.0-3

CVE-2023-25434 affecting package libtiff 4.5.0-3. An upgraded version of the package is available that resolves this issue...

8.8CVSS7.4AI score0.00843EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.29 views

Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-255)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-255 advisory. LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from source...

8.8CVSS6.7AI score0.00843EPSS
Exploits10References22
RedhatCVE
RedhatCVE
added 2023/06/28 9:17 a.m.34 views

CVE-2023-25434

A heap-based buffer overflow vulnerability was found in LibTIFF's tiffcrop utility in the extractContigSamplesBytes function. This flaw allows an attacker to pass a crafted TIFF image file to the tiffcrop utility, which causes an out-of-bounds read access resulting in an application crash,...

5.5CVSS6.9AI score0.00843EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/06/14 8:15 p.m.28 views

CVE-2023-25434

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215...

8.8CVSS6.8AI score0.00843EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/06/14 12:0 a.m.9 views

CVE-2023-25434

libtiff 4.5.0 is vulnerable to Buffer Overflow via extractContigSamplesBytes at /libtiff/tools/tiffcrop.c:3215...

8.7AI score0.00843EPSS
Exploits1References1
CVE
CVE
added 2023/06/14 12:0 a.m.88 views

CVE-2023-25434

CVE-2023-25434 affects libtiff 4.5.0 and is a Buffer Overflow in extractContigSamplesBytes() (tiffcrop.c:3215). Connected sources confirm the vulnerability exists in libtiff 4.5.0 and describe the overflow, but the provided documents do not specify a fixed version or a vendor patch. Impact is des...

8.8CVSS8.4AI score0.00843EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder