Libtiff 漏洞

时间轴

去年

版本

4.0.346
4.0.646
4.0.142
4.0.240
4.0.735

修正

Official Fix211
Temporary Fix0
Workaround0
Unavailable2
Not Defined49

易受攻击性

High1
Functional0
Proof-of-Concept36
Unproven5
Not Defined220

访问向量

Not Defined0
Physical0
Local32
Adjacent7
Network223

身份验证

Not Defined0
High0
Low20
None242

用户交互

Not Defined0
Required119
None143

C3BM Index

去年

CVSSv3 Base

≤10
≤20
≤30
≤45
≤524
≤682
≤756
≤861
≤98
≤1026

CVSSv3 Temp

≤10
≤20
≤30
≤47
≤528
≤683
≤770
≤844
≤98
≤1022

VulDB

≤10
≤20
≤30
≤412
≤551
≤657
≤750
≤861
≤91
≤1030

NVD

≤10
≤20
≤30
≤40
≤50
≤638
≤758
≤837
≤925
≤1015

CNA

≤10
≤20
≤30
≤40
≤51
≤620
≤713
≤82
≤91
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k58
<2k96
<5k107
<10k0
<25k0
<50k1
<100k0
≥100k0

本日攻击

<1k246
<2k12
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

去年

🔴 CTI 活动

Affected Versions (47): 3.0, 3.1, 3.4, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 3.5.5, 3.5.6, 3.5.7, 3.6, 3.6.1, 3.7, 3.7.1, 3.7.2, 3.7.3, 3.7.4, 3.8, 3.8.1, 3.8.2, 3.9, 3.9.1, 3.9.2, 3.9.2-5.2.1, 3.9.3, 3.9.4, 3.9.5, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.3-35.amzn2.0.1, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.1, 4.2, 4.3, 4.4, 4.4.0rc1, 4.5, 4.5.1, libtiff5.tif

Link to Product Website: http://www.libtiff.org/

软件类型: Image Processing Software

已发布BaseTemp漏洞0day今天修正CTICVE
2023-08-286.36.3LibTIFF tiffcp.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.09CVE-2023-40745
2023-08-286.36.3LibTIFF Integer Overflow raw2tiff.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-41175
2023-08-235.55.5LibTIFF TIFF File tif_unix.c _TIFFmemcpy 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2020-18768
2023-08-233.53.4libtiff TIFF File TIFFReadDirectory 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-40090
2023-07-266.36.3LibTIFF tiffcp.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-38289
2023-07-266.36.3LibTIFF raw2tiff.c 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-38288
2023-07-126.36.3LibTIFF tif_fax3.c Fax3Encode 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2023-3618
2023-07-104.33.9LibTIFF tiffcrop.c createCroppedImage 拒绝服务$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2023-3576
2023-06-304.94.9LibTIFF tif_dir.c 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2908
2023-06-295.95.8LibTIFF uv_encode 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2023-26966
2023-06-295.95.8LibTIFF tiffcrop.c rotateImage 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-25433
2023-06-225.95.9LibTIFF tiffcrop.c extractContigSamplesShifted8bits 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-25435
2023-06-195.45.3LibTIFF Output File null TIFFClose 拒绝服务$0-$5k$0-$5kProof-of-ConceptNot Defined0.03CVE-2023-3316
2023-06-155.95.8LibTIFF tiffcrop.c loadImage 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26965
2023-06-157.17.1LibTIFF tiffcrop.c extractContigSamplesBytes 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2023-25434
2023-06-085.55.5LibTIFF extractImageSection 内存损坏$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-3164
2023-05-184.44.3Libtiff tif_lzw.c LZWDecode 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-2731
2023-05-094.44.4LibTIFF tiffcp.c tiffcp 拒绝服务$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-30086
2023-04-245.35.0LibTIFF tiffcrop 内存损坏$0-$5k$0-$5kProof-of-ConceptNot Defined0.02CVE-2023-30774
2023-04-224.84.6LibTIFF tiffcrop.c extractContigSamples32bits 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-30775
2023-04-116.26.2LibTIFF tiffcrop tiffcrop.c extractImageSection 信息公开$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-1916
2023-03-036.26.1LibTIFF TIFF File tiffcp.c tiffcp 信息公开$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2022-4645
2023-02-145.55.5LibTIFF TIFF File tiffcrop.c tiffcrop 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-0804
2023-02-145.55.5LibTIFF TIFF File tiffcrop.c 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-0803
2023-02-145.55.5LibTIFF TIFF File tiffcrop.c tiffcrop 内存损坏$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-0802

237 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 237 results.

上一步一览下一步

Do you need the next level of professionalism?

Upgrade your account now!