CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

98 matches found

Rockylinux•added 2026/05/21 4:27 p.m.•7 views

libtiff security update

An update is available for libtiff. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libtiff packages contain a library of functions for manipulating Tagged...

8.8CVSS6.4AI score0.00067EPSS

Exploits1

Mageia•added 2026/04/21 2:11 a.m.•4 views

Updated libtiff packages fix security vulnerabilities

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c. CVE-2025-61143 libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function. CVE-2025-61144...

9.8CVSS5.7AI score0.00035EPSS

Exploits1References2

Tenable Nessus•added 2026/01/31 12:0 a.m.•7 views

EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2026-1180)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the fi...

8.8CVSS5.2AI score0.00141EPSS

Exploits2References5

Tenable Nessus•added 2026/01/20 12:0 a.m.•3 views

MiracleLinux 8 : libtiff-4.0.9-32.el8_10 (AXSA:2024-8648:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8648:03 advisory. libtiff: Heap-based buffer overflow in ChopUpSingleUncompressedStrip in tifdirread.c CVE-2018-15209 libtiff: Buffer Overflow via...

8.8CVSS7.4AI score0.00737EPSS

Exploits2References5

Tenable Nessus•added 2026/01/20 12:0 a.m.•6 views

MiracleLinux 9 : libtiff-4.4.0-5.el9 (AXSA:2023-4864:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4864:02 advisory. LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at...

6.5CVSS7.3AI score0.00124EPSS

Exploits7References8

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 9 : libtiff-4.4.0-2.el9 (AXSA:2022-4563:04)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4563:04 advisory. libtiff: Denial of Service via crafted TIFF file CVE-2022-0561 libtiff: Null source pointer lead to Denial of Service via crafted TIFF file...

7.7CVSS7.3AI score0.00203EPSS

Exploits10References11

Tenable Nessus•added 2026/01/20 12:0 a.m.•1 views

MiracleLinux 8 : libtiff-4.0.9-26.el8 (AXSA:2023-4774:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-4774:01 advisory. LibTiff: DoS from Divide By Zero Error CVE-2022-2056, CVE-2022-2057, CVE-2022-2058 libtiff: Double free or corruption in rotateImage function at...

6.5CVSS7.2AI score0.00124EPSS

Exploits7References11

Tenable Nessus•added 2026/01/13 12:0 a.m.•2 views

MiracleLinux 9 : libtiff-4.4.0-15.el9_7.2 (AXSA:2025-11453:10)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11453:10 advisory. libtiff: LibTIFF Use-After-Free Vulnerability CVE-2025-8176 libtiff: Libtiff Write-What-Where CVE-2025-9900 Tenable has extracted the preceding...

8.8CVSS6.1AI score0.00067EPSS

Exploits1References3

Tenable Nessus•added 2025/12/18 12:0 a.m.•1 views

EulerOS Virtualization 2.13.0 : libtiff (EulerOS-SA-2025-2585)

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the fil...

7.8CVSS4.2AI score0.00141EPSS

Exploits3References5

Rosalinux•added 2025/12/02 1:20 p.m.•6 views

Advisory ROSA-SA-2025-3096

Software: libtiff 4.0.9 OS: ROSA Virtualization 2.1 packageevrstring: libtiff-4.0.9-33.rv3 CVE-ID: CVE-2018-15209 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in LibTIFF allows remote attackers to cause a denial of service or execute arbitrary code via a specially crafted TIFF file...

8.8CVSS8.8AI score0.00737EPSS

Exploits8

F5 Networks•added 2025/11/26 8:54 p.m.•6 views

K000157988: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2022-3570 Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosur...

7.7CVSS6.8AI score0.00074EPSS

Exploits7

F5 Networks•added 2025/11/26 8:54 p.m.•4 views

K000157989: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2016-9453 The t2preadwritepdfimagetile function in LibTIFF allows remote attackers to cause a denial of service out-of-bounds write and crash or possibly execute arbitrary code via a JPEG file with a TIFFTAGJPEGTABLES of length one. CVE-2016-5323 The...

8.8CVSS7.9AI score0.02534EPSS

Exploits3

F5 Networks•added 2025/11/26 8:47 p.m.•5 views

K000157987: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2022-0891 A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential...

7.1CVSS7.2AI score0.00041EPSS

Exploits9

F5 Networks•added 2025/11/26 8:34 p.m.•7 views

K000157985: LibTIFF vulnerabilities CVE-2020-35522, CVE-2020-35521, CVE-2020-35524, and CVE-2020-35523

Security Advisory Description CVE-2020-35522 In LibTIFF, there is a memory malloc failure in tifpixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack. CVE-2020-35521 A flaw was found in libtiff. Due to a memory allocation failure in tifread.c, a...

7.8CVSS7.9AI score0.0048EPSS

Exploits0

F5 Networks•added 2025/11/26 8:32 p.m.•5 views

K000157984: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2012-4564 ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted PPM image that triggers an integer overflow, a zero-memory...

8.8CVSS8AI score0.27173EPSS

Exploits4

Tenable Nessus•added 2025/11/17 12:0 a.m.•1 views

RHEL 7 : libtiff (RHSA-2025:21407)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21407 advisory. The libtiff packages contain a library of functions for manipulating Tagged Image File Format TIFF files. Security Fixes: libtiff: LibTIFF...

8.8CVSS6.3AI score0.00072EPSS

Exploits2References8

Tenable Nessus•added 2025/11/17 12:0 a.m.•6 views

Alibaba Cloud Linux 3 : 0177: mingw-libtiff (ALINUX3-SA-2025:0177)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0177 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-8176: A vulnerability was found i...

8.8CVSS5.7AI score0.00067EPSS

Exploits1References3

Tenable Nessus•added 2025/11/07 12:0 a.m.•3 views

AlmaLinux 8 : mingw-libtiff (ALSA-2025:19906)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:19906 advisory. libtiff: LibTIFF Use-After-Free Vulnerability CVE-2025-8176 libtiff: Libtiff Write-What-Where CVE-2025-9900 Tenable has extracted the preceding descripti...

8.8CVSS6.1AI score0.00067EPSS

Exploits1References4