CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0797

LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368, invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit afaabc3e.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 0.9%

CVSS Severity

CVSS v3 Score 6.8

References

Products affected by CVE-2023-0797

Libtiff » Libtiff » Version: N/A

cpe:2.3:a:libtiff:libtiff:-
Libtiff » Libtiff » Version: 3.4

cpe:2.3:a:libtiff:libtiff:3.4
Libtiff » Libtiff » Version: 3.5.1

cpe:2.3:a:libtiff:libtiff:3.5.1
Libtiff » Libtiff » Version: 3.5.2

cpe:2.3:a:libtiff:libtiff:3.5.2
Libtiff » Libtiff » Version: 3.5.3

cpe:2.3:a:libtiff:libtiff:3.5.3
Libtiff » Libtiff » Version: 3.5.4

cpe:2.3:a:libtiff:libtiff:3.5.4
Libtiff » Libtiff » Version: 3.5.5

cpe:2.3:a:libtiff:libtiff:3.5.5
Libtiff » Libtiff » Version: 3.5.6

cpe:2.3:a:libtiff:libtiff:3.5.6
Libtiff » Libtiff » Version: 3.5.7

cpe:2.3:a:libtiff:libtiff:3.5.7
Libtiff » Libtiff » Version: 3.6.0

cpe:2.3:a:libtiff:libtiff:3.6.0
Libtiff » Libtiff » Version: 3.6.1

cpe:2.3:a:libtiff:libtiff:3.6.1
Libtiff » Libtiff » Version: 3.7.0

cpe:2.3:a:libtiff:libtiff:3.7.0
Libtiff » Libtiff » Version: 3.7.1

cpe:2.3:a:libtiff:libtiff:3.7.1
Libtiff » Libtiff » Version: 3.7.2

cpe:2.3:a:libtiff:libtiff:3.7.2
Libtiff » Libtiff » Version: 3.7.3

cpe:2.3:a:libtiff:libtiff:3.7.3
Libtiff » Libtiff » Version: 3.7.4

cpe:2.3:a:libtiff:libtiff:3.7.4
Libtiff » Libtiff » Version: 3.8.0

cpe:2.3:a:libtiff:libtiff:3.8.0
Libtiff » Libtiff » Version: 3.8.1

cpe:2.3:a:libtiff:libtiff:3.8.1
Libtiff » Libtiff » Version: 3.8.2

cpe:2.3:a:libtiff:libtiff:3.8.2
Libtiff » Libtiff » Version: 3.9

cpe:2.3:a:libtiff:libtiff:3.9
Libtiff » Libtiff » Version: 3.9.0

cpe:2.3:a:libtiff:libtiff:3.9.0
Libtiff » Libtiff » Version: 3.9.1

cpe:2.3:a:libtiff:libtiff:3.9.1
Libtiff » Libtiff » Version: 3.9.2

cpe:2.3:a:libtiff:libtiff:3.9.2
Libtiff » Libtiff » Version: 3.9.2-5.2.1

cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1
Libtiff » Libtiff » Version: 3.9.3

cpe:2.3:a:libtiff:libtiff:3.9.3
Libtiff » Libtiff » Version: 3.9.4

cpe:2.3:a:libtiff:libtiff:3.9.4
Libtiff » Libtiff » Version: 3.9.5

cpe:2.3:a:libtiff:libtiff:3.9.5
Libtiff » Libtiff » Version: 3.9.6

cpe:2.3:a:libtiff:libtiff:3.9.6
Libtiff » Libtiff » Version: 3.9.7

cpe:2.3:a:libtiff:libtiff:3.9.7
Libtiff » Libtiff » Version: 4.0

cpe:2.3:a:libtiff:libtiff:4.0
Libtiff » Libtiff » Version: 4.0.0

cpe:2.3:a:libtiff:libtiff:4.0.0
Libtiff » Libtiff » Version: 4.0.1

cpe:2.3:a:libtiff:libtiff:4.0.1
Libtiff » Libtiff » Version: 4.0.10

cpe:2.3:a:libtiff:libtiff:4.0.10
Libtiff » Libtiff » Version: 4.0.2

cpe:2.3:a:libtiff:libtiff:4.0.2
Libtiff » Libtiff » Version: 4.0.3

cpe:2.3:a:libtiff:libtiff:4.0.3
Libtiff » Libtiff » Version: 4.0.3-35

cpe:2.3:a:libtiff:libtiff:4.0.3-35
Libtiff » Libtiff » Version: 4.0.4

cpe:2.3:a:libtiff:libtiff:4.0.4
Libtiff » Libtiff » Version: 4.0.5

cpe:2.3:a:libtiff:libtiff:4.0.5
Libtiff » Libtiff » Version: 4.0.6

cpe:2.3:a:libtiff:libtiff:4.0.6
Libtiff » Libtiff » Version: 4.0.7

cpe:2.3:a:libtiff:libtiff:4.0.7
Libtiff » Libtiff » Version: 4.0.8

cpe:2.3:a:libtiff:libtiff:4.0.8
Libtiff » Libtiff » Version: 4.0.9

cpe:2.3:a:libtiff:libtiff:4.0.9
Libtiff » Libtiff » Version: 4.1.0

cpe:2.3:a:libtiff:libtiff:4.1.0
Libtiff » Libtiff » Version: 4.2.0

cpe:2.3:a:libtiff:libtiff:4.2.0
Libtiff » Libtiff » Version: 4.3.0

cpe:2.3:a:libtiff:libtiff:4.3.0
Libtiff » Libtiff » Version: 4.4.0

cpe:2.3:a:libtiff:libtiff:4.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-0797

Products

Pricing

Contact Us