Vulnerability Details CVE-2024-48854
Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.9%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2024-48854
-
cpe:2.3:a:blackberry:qnx_software_development_platform:7.0
-
cpe:2.3:a:blackberry:qnx_software_development_platform:7.1
-
cpe:2.3:a:blackberry:qnx_software_development_platform:8.0