Lucene search
+L

759 matches found

redhatcve
redhatcve
added 2026/06/05 7:22 p.m.10 views

CVE-2026-7451

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS5.9AI score0.00166EPSS
Exploits0References1
nvd
nvd
added 2026/05/26 6:16 p.m.21 views

CVE-2026-7451

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS0.00166EPSS
Exploits0References2
cve
cve
added 2026/05/26 5:5 p.m.30 views

CVE-2026-7451

CVE-2026-7451 : A maliciously crafted TIF file, when parsed by Autodesk 3ds Max , can trigger an Out-of-Bounds Write in the process. The vulnerability may allow a malicious actor to cause a crash, data corruption, or execute arbitrary code in the context of the current process. Connected sources ...

7.8CVSS6.2AI score0.00166EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/05/26 5:5 p.m.37 views

CVE-2026-7451 TIF File Parsing Out-of-Bounds Write in Autodesk 3ds Max

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS0.00166EPSS
Exploits0References2
euvd
euvd
added 2026/05/26 5:5 p.m.21 views

EUVD-2026-31910

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00166EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/26 5:5 p.m.11 views

CVE-2026-7451

A maliciously crafted TIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.00166EPSS
Exploits0References3Affected Software1
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fixed SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to NTARMSVE regset can place the tracee into an invalid state. In this state, non-streaming SVE register data i...

5.5CVSS5.7AI score0.001EPSS
Exploits0References1
astralinux
astralinux
added 2026/05/20 5:53 a.m.15 views

Astra Linux – Vulnerability in Tiff

A buffer overflow in LibTiff v4.0.10 allows attackers to cause a denial of service through the “TIFFVGetField” function in the component ‘libtiff/tifdir.c’...

6.5CVSS6.8AI score0.01456EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Tiff

The "Divide By Zero" error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service attack through a crafted TIF file. For users who compile libtiff from source code, the fix is available in the commit f3a5e010...

6.5CVSS6.7AI score0.01206EPSS
Exploits1References2
mageia
mageia
added 2026/04/21 2:11 a.m.10 views

Updated libtiff packages fix security vulnerabilities

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c. CVE-2025-61143 libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function. CVE-2025-61144...

9.8CVSS5.7AI score0.00253EPSS
Exploits1References2
cvelist
cvelist
added 2026/03/10 6:6 p.m.28 views

CVE-2026-31797 iccDEV has a heap out-of-bounds read in CTiffImg::ReadLine()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap out-of-bounds read in CTiffImg::ReadLine when iccApplyProfiles processes a crafted TIFF image, causing memory disclosure or crash. This vulnerability is fixed in 2.3.1.5...

6.1CVSS0.0015EPSS
Exploits0References4
osv
osv
added 2026/02/28 12:44 p.m.10 views

OESA-2026-1441 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

9.8CVSS6.4AI score0.00253EPSS
Exploits2References4
mscve
mscve
added 2026/02/26 9:1 a.m.6 views

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

...

5.5CVSS5.9AI score0.00113EPSS
Exploits0
nvd
nvd
added 2026/02/23 7:22 p.m.8 views

CVE-2025-61143

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c...

5.5CVSS0.00113EPSS
Exploits0References3
cnnvd
cnnvd
added 2026/02/23 12:0 a.m.10 views

LibTIFF 安全漏洞

LibTIFF is an open-source library for reading and writing TIFF Tagged Image File Format files. This library includes some command-line tools for processing TIFF files. Versions of LibTIFF prior to v4.7.1 have security vulnerabilities, which stem from a null pointer dereferencing in the component...

5.5CVSS5.8AI score0.00113EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2026/02/23 12:0 a.m.1 views

CVE-2025-61143

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tifopen.c...

5.1AI score0.00113EPSS
Exploits0References3
osv
osv
added 2026/02/14 3:16 p.m.5 views

UBUNTU-CVE-2026-23114

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NTARMSVE regset can place the tracee into an invalid state where non-streaming SVE register data is stored...

5.5CVSS5.7AI score0.001EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/02/14 12:0 a.m.8 views

PT-2026-8107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fix SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to the NT ARM SVE regset can place the tracee into an invalid state where non-streaming SVE register data is stor...

5.3AI score0.001EPSS
Exploits0References3
ubuntucve
ubuntucve
added 2026/02/04 5:16 p.m.8 views

CVE-2026-23107

In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Allocate SSVE storage when restoring ZA The code to restore a ZA context doesn't attempt to allocate the task's svestate before setting TIFSME. Consequently, restoring a ZA context can place a task into an...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References12
nessus
nessus
added 2026/01/22 12:0 a.m.10 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38100)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38100 advisory. - In the Linux kernel, the following vulnerability has been resolved: x86/iopl: Cure TIFIOBITMAP inconsistenci...

5.5CVSS5.4AI score0.00172EPSS
Exploits0References2
Rows per page
Query Builder