Libtiff 漏洞

时间轴

去年

版本

4.0.346
4.0.646
4.0.142
4.0.240
4.0.735

修正

Official Fix215
Temporary Fix0
Workaround0
Unavailable2
Not Defined49

易受攻击性

High1
Functional0
Proof-of-Concept37
Unproven5
Not Defined223

访问向量

Not Defined0
Physical0
Local32
Adjacent7
Network227

身份验证

Not Defined0
High0
Low20
None246

用户交互

Not Defined0
Required123
None143

C3BM Index

去年

CVSSv3 Base

≤10
≤20
≤30
≤44
≤525
≤684
≤758
≤861
≤98
≤1026

CVSSv3 Temp

≤10
≤20
≤30
≤46
≤529
≤686
≤771
≤844
≤98
≤1022

VulDB

≤10
≤20
≤30
≤412
≤554
≤657
≤751
≤861
≤91
≤1030

NVD

≤10
≤20
≤30
≤40
≤50
≤639
≤760
≤837
≤925
≤1015

CNA

≤10
≤20
≤30
≤40
≤51
≤620
≤713
≤85
≤91
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k58
<2k102
<5k105
<10k0
<25k0
<50k1
<100k0
≥100k0

本日攻击

<1k250
<2k12
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

去年

🔴 CTI 活动

Affected Versions (47): 3.0, 3.1, 3.4, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 3.5.5, 3.5.6, 3.5.7, 3.6, 3.6.1, 3.7, 3.7.1, 3.7.2, 3.7.3, 3.7.4, 3.8, 3.8.1, 3.8.2, 3.9, 3.9.1, 3.9.2, 3.9.2-5.2.1, 3.9.3, 3.9.4, 3.9.5, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.3-35.amzn2.0.1, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.1, 4.2, 4.3, 4.4, 4.4.0rc1, 4.5, 4.5.1, libtiff5.tif

Link to Product Website: http://www.libtiff.org/

软件类型: Image Processing Software

已发布BaseTemp漏洞0day今天修正CTICVE
2024-01-245.95.8LibTIFF TIFFReadRGBATileExt 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-52356
2024-01-245.95.8LibTIFF TIFFRasterScanlineSize64 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-52355
2023-11-246.16.0LibTIFF File tif_dirread.c TIFFOpen 拒绝服务$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2023-6277
2023-11-216.36.3LibTIFF tiffcp.c cpStripToTile 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-6228
2023-08-286.36.3LibTIFF tiffcp.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-40745
2023-08-286.36.3LibTIFF Integer Overflow raw2tiff.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-41175
2023-08-235.55.5LibTIFF TIFF File tif_unix.c _TIFFmemcpy 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2020-18768
2023-08-235.04.9libtiff TIFF File TIFFReadDirectory 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-40090
2023-07-266.36.3LibTIFF tiffcp.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2023-38289
2023-07-266.36.3LibTIFF raw2tiff.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-38288
2023-07-126.36.3LibTIFF tif_fax3.c Fax3Encode 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.08CVE-2023-3618
2023-07-104.33.9LibTIFF tiffcrop.c createCroppedImage 拒绝服务$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2023-3576
2023-06-304.94.9LibTIFF tif_dir.c 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-2908
2023-06-295.95.8LibTIFF uv_encode 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26966
2023-06-295.95.8LibTIFF tiffcrop.c rotateImage 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-25433
2023-06-225.95.9LibTIFF tiffcrop.c extractContigSamplesShifted8bits 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-25435
2023-06-195.45.3LibTIFF Output File null TIFFClose 拒绝服务$0-$5k$0-$5kProof-of-ConceptNot Defined0.02CVE-2023-3316
2023-06-155.95.8LibTIFF tiffcrop.c loadImage 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26965
2023-06-157.17.1LibTIFF tiffcrop.c extractContigSamplesBytes 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-25434
2023-06-085.55.5LibTIFF extractImageSection 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2023-3164
2023-05-184.44.3Libtiff tif_lzw.c LZWDecode 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2731
2023-05-094.44.4LibTIFF tiffcp.c tiffcp 拒绝服务$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-30086
2023-04-245.35.0LibTIFF tiffcrop 内存损坏$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2023-30774
2023-04-224.84.6LibTIFF tiffcrop.c extractContigSamples32bits 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30775
2023-04-116.26.2LibTIFF tiffcrop tiffcrop.c extractImageSection 信息公开$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-1916

241 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 241 results.

上一步一览下一步

Might our Artificial Intelligence support you?

Check our Alexa App!