CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-39453

A use-after-free vulnerability exists in the tif_parse_sub_IFD functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to arbitrary code execution. An attacker can deliver this file to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.4%

CVSS Severity

CVSS v3 Score 9.8

References

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1830
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1830

Products affected by CVE-2023-39453

Accusoft » Imagegear » Version: 20.1

cpe:2.3:a:accusoft:imagegear:20.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-39453

Products

Pricing

Contact Us