CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2869

libtiff's tiffcrop tool has a uint32_t underflow which leads to out of bounds read and write in the extractContigSamples8bits routine. An attacker who supplies a crafted file to tiffcrop could trigger this flaw, most likely by tricking a user into opening the crafted file with tiffcrop. Triggering this flaw could cause a crash or potentially further exploitation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.0%

CVSS Severity

CVSS v3 Score 5.5

References

Products affected by CVE-2022-2869

Libtiff » Libtiff » Version: N/A

cpe:2.3:a:libtiff:libtiff:-
Libtiff » Libtiff » Version: 3.4

cpe:2.3:a:libtiff:libtiff:3.4
Libtiff » Libtiff » Version: 3.5.1

cpe:2.3:a:libtiff:libtiff:3.5.1
Libtiff » Libtiff » Version: 3.5.2

cpe:2.3:a:libtiff:libtiff:3.5.2
Libtiff » Libtiff » Version: 3.5.3

cpe:2.3:a:libtiff:libtiff:3.5.3
Libtiff » Libtiff » Version: 3.5.4

cpe:2.3:a:libtiff:libtiff:3.5.4
Libtiff » Libtiff » Version: 3.5.5

cpe:2.3:a:libtiff:libtiff:3.5.5
Libtiff » Libtiff » Version: 3.5.6

cpe:2.3:a:libtiff:libtiff:3.5.6
Libtiff » Libtiff » Version: 3.5.7

cpe:2.3:a:libtiff:libtiff:3.5.7
Libtiff » Libtiff » Version: 3.6.0

cpe:2.3:a:libtiff:libtiff:3.6.0
Libtiff » Libtiff » Version: 3.6.1

cpe:2.3:a:libtiff:libtiff:3.6.1
Libtiff » Libtiff » Version: 3.7.0

cpe:2.3:a:libtiff:libtiff:3.7.0
Libtiff » Libtiff » Version: 3.7.1

cpe:2.3:a:libtiff:libtiff:3.7.1
Libtiff » Libtiff » Version: 3.7.2

cpe:2.3:a:libtiff:libtiff:3.7.2
Libtiff » Libtiff » Version: 3.7.3

cpe:2.3:a:libtiff:libtiff:3.7.3
Libtiff » Libtiff » Version: 3.7.4

cpe:2.3:a:libtiff:libtiff:3.7.4
Libtiff » Libtiff » Version: 3.8.0

cpe:2.3:a:libtiff:libtiff:3.8.0
Libtiff » Libtiff » Version: 3.8.1

cpe:2.3:a:libtiff:libtiff:3.8.1
Libtiff » Libtiff » Version: 3.8.2

cpe:2.3:a:libtiff:libtiff:3.8.2
Libtiff » Libtiff » Version: 3.9

cpe:2.3:a:libtiff:libtiff:3.9
Libtiff » Libtiff » Version: 3.9.0

cpe:2.3:a:libtiff:libtiff:3.9.0
Libtiff » Libtiff » Version: 3.9.1

cpe:2.3:a:libtiff:libtiff:3.9.1
Libtiff » Libtiff » Version: 3.9.2

cpe:2.3:a:libtiff:libtiff:3.9.2
Libtiff » Libtiff » Version: 3.9.2-5.2.1

cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1
Libtiff » Libtiff » Version: 3.9.3

cpe:2.3:a:libtiff:libtiff:3.9.3
Libtiff » Libtiff » Version: 3.9.4

cpe:2.3:a:libtiff:libtiff:3.9.4
Libtiff » Libtiff » Version: 3.9.5

cpe:2.3:a:libtiff:libtiff:3.9.5
Libtiff » Libtiff » Version: 3.9.6

cpe:2.3:a:libtiff:libtiff:3.9.6
Libtiff » Libtiff » Version: 3.9.7

cpe:2.3:a:libtiff:libtiff:3.9.7
Libtiff » Libtiff » Version: 4.0

cpe:2.3:a:libtiff:libtiff:4.0
Libtiff » Libtiff » Version: 4.0.0

cpe:2.3:a:libtiff:libtiff:4.0.0
Libtiff » Libtiff » Version: 4.0.1

cpe:2.3:a:libtiff:libtiff:4.0.1
Libtiff » Libtiff » Version: 4.0.10

cpe:2.3:a:libtiff:libtiff:4.0.10
Libtiff » Libtiff » Version: 4.0.2

cpe:2.3:a:libtiff:libtiff:4.0.2
Libtiff » Libtiff » Version: 4.0.3

cpe:2.3:a:libtiff:libtiff:4.0.3
Libtiff » Libtiff » Version: 4.0.3-35

cpe:2.3:a:libtiff:libtiff:4.0.3-35
Libtiff » Libtiff » Version: 4.0.4

cpe:2.3:a:libtiff:libtiff:4.0.4
Libtiff » Libtiff » Version: 4.0.5

cpe:2.3:a:libtiff:libtiff:4.0.5
Libtiff » Libtiff » Version: 4.0.6

cpe:2.3:a:libtiff:libtiff:4.0.6
Libtiff » Libtiff » Version: 4.0.7

cpe:2.3:a:libtiff:libtiff:4.0.7
Libtiff » Libtiff » Version: 4.0.8

cpe:2.3:a:libtiff:libtiff:4.0.8
Libtiff » Libtiff » Version: 4.0.9

cpe:2.3:a:libtiff:libtiff:4.0.9
Libtiff » Libtiff » Version: 4.1.0

cpe:2.3:a:libtiff:libtiff:4.1.0
Libtiff » Libtiff » Version: 4.2.0

cpe:2.3:a:libtiff:libtiff:4.2.0
Libtiff » Libtiff » Version: 4.3.0

cpe:2.3:a:libtiff:libtiff:4.3.0
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0
Debian » Debian Linux » Version: 11.0

cpe:2.3:o:debian:debian_linux:11.0
Fedoraproject » Fedora » Version: 35

cpe:2.3:o:fedoraproject:fedora:35
Fedoraproject » Fedora » Version: 36

cpe:2.3:o:fedoraproject:fedora:36

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2869

Products

Pricing

Contact Us