CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3598

LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.5%

CVSS Severity

CVSS v3 Score 5.5

References

Products affected by CVE-2022-3598

Libtiff » Libtiff » Version: 3.9.0

cpe:2.3:a:libtiff:libtiff:3.9.0
Libtiff » Libtiff » Version: 3.9.1

cpe:2.3:a:libtiff:libtiff:3.9.1
Libtiff » Libtiff » Version: 3.9.2

cpe:2.3:a:libtiff:libtiff:3.9.2
Libtiff » Libtiff » Version: 3.9.2-5.2.1

cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1
Libtiff » Libtiff » Version: 3.9.3

cpe:2.3:a:libtiff:libtiff:3.9.3
Libtiff » Libtiff » Version: 3.9.4

cpe:2.3:a:libtiff:libtiff:3.9.4
Libtiff » Libtiff » Version: 3.9.5

cpe:2.3:a:libtiff:libtiff:3.9.5
Libtiff » Libtiff » Version: 3.9.6

cpe:2.3:a:libtiff:libtiff:3.9.6
Libtiff » Libtiff » Version: 3.9.7

cpe:2.3:a:libtiff:libtiff:3.9.7
Libtiff » Libtiff » Version: 4.0

cpe:2.3:a:libtiff:libtiff:4.0
Libtiff » Libtiff » Version: 4.0.0

cpe:2.3:a:libtiff:libtiff:4.0.0
Libtiff » Libtiff » Version: 4.0.1

cpe:2.3:a:libtiff:libtiff:4.0.1
Libtiff » Libtiff » Version: 4.0.10

cpe:2.3:a:libtiff:libtiff:4.0.10
Libtiff » Libtiff » Version: 4.0.2

cpe:2.3:a:libtiff:libtiff:4.0.2
Libtiff » Libtiff » Version: 4.0.3

cpe:2.3:a:libtiff:libtiff:4.0.3
Libtiff » Libtiff » Version: 4.0.3-35

cpe:2.3:a:libtiff:libtiff:4.0.3-35
Libtiff » Libtiff » Version: 4.0.4

cpe:2.3:a:libtiff:libtiff:4.0.4
Libtiff » Libtiff » Version: 4.0.5

cpe:2.3:a:libtiff:libtiff:4.0.5
Libtiff » Libtiff » Version: 4.0.6

cpe:2.3:a:libtiff:libtiff:4.0.6
Libtiff » Libtiff » Version: 4.0.7

cpe:2.3:a:libtiff:libtiff:4.0.7
Libtiff » Libtiff » Version: 4.0.8

cpe:2.3:a:libtiff:libtiff:4.0.8
Libtiff » Libtiff » Version: 4.0.9

cpe:2.3:a:libtiff:libtiff:4.0.9
Libtiff » Libtiff » Version: 4.1.0

cpe:2.3:a:libtiff:libtiff:4.1.0
Libtiff » Libtiff » Version: 4.2.0

cpe:2.3:a:libtiff:libtiff:4.2.0
Libtiff » Libtiff » Version: 4.3.0

cpe:2.3:a:libtiff:libtiff:4.3.0
Libtiff » Libtiff » Version: 4.4.0

cpe:2.3:a:libtiff:libtiff:4.4.0
Netapp » Active Iq Unified Manager » Version: N/A

cpe:2.3:a:netapp:active_iq_unified_manager:-
Debian » Debian Linux » Version: 10.0

cpe:2.3:o:debian:debian_linux:10.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-3598

Products

Pricing

Contact Us