Vulnerability Details CVE-2025-8851
A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file tools/tiffcrop.c of the component tiffcrop. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The patch is identified as 8a7a48d7a645992ca83062b3a1873c951661e2b3. It is recommended to apply a patch to fix this issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.8%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 4.3
References
Products affected by CVE-2025-8851
-
cpe:2.3:a:libtiff:libtiff:-
-
cpe:2.3:a:libtiff:libtiff:2023-11-11
-
cpe:2.3:a:libtiff:libtiff:3.4
-
cpe:2.3:a:libtiff:libtiff:3.5.1
-
cpe:2.3:a:libtiff:libtiff:3.5.2
-
cpe:2.3:a:libtiff:libtiff:3.5.3
-
cpe:2.3:a:libtiff:libtiff:3.5.4
-
cpe:2.3:a:libtiff:libtiff:3.5.5
-
cpe:2.3:a:libtiff:libtiff:3.5.6
-
cpe:2.3:a:libtiff:libtiff:3.5.7
-
cpe:2.3:a:libtiff:libtiff:3.6.0
-
cpe:2.3:a:libtiff:libtiff:3.6.1
-
cpe:2.3:a:libtiff:libtiff:3.7.0
-
cpe:2.3:a:libtiff:libtiff:3.7.1
-
cpe:2.3:a:libtiff:libtiff:3.7.2
-
cpe:2.3:a:libtiff:libtiff:3.7.3
-
cpe:2.3:a:libtiff:libtiff:3.7.4
-
cpe:2.3:a:libtiff:libtiff:3.8.0
-
cpe:2.3:a:libtiff:libtiff:3.8.1
-
cpe:2.3:a:libtiff:libtiff:3.8.2
-
cpe:2.3:a:libtiff:libtiff:3.9
-
cpe:2.3:a:libtiff:libtiff:3.9.0
-
cpe:2.3:a:libtiff:libtiff:3.9.1
-
cpe:2.3:a:libtiff:libtiff:3.9.2
-
cpe:2.3:a:libtiff:libtiff:3.9.2-5.2.1
-
cpe:2.3:a:libtiff:libtiff:3.9.3
-
cpe:2.3:a:libtiff:libtiff:3.9.4
-
cpe:2.3:a:libtiff:libtiff:3.9.5
-
cpe:2.3:a:libtiff:libtiff:3.9.6
-
cpe:2.3:a:libtiff:libtiff:3.9.7
-
cpe:2.3:a:libtiff:libtiff:4.0
-
cpe:2.3:a:libtiff:libtiff:4.0.0
-
cpe:2.3:a:libtiff:libtiff:4.0.1
-
cpe:2.3:a:libtiff:libtiff:4.0.10
-
cpe:2.3:a:libtiff:libtiff:4.0.2
-
cpe:2.3:a:libtiff:libtiff:4.0.3
-
cpe:2.3:a:libtiff:libtiff:4.0.3-35
-
cpe:2.3:a:libtiff:libtiff:4.0.4
-
cpe:2.3:a:libtiff:libtiff:4.0.5
-
cpe:2.3:a:libtiff:libtiff:4.0.6
-
cpe:2.3:a:libtiff:libtiff:4.0.7
-
cpe:2.3:a:libtiff:libtiff:4.0.8
-
cpe:2.3:a:libtiff:libtiff:4.0.9
-
cpe:2.3:a:libtiff:libtiff:4.1.0
-
cpe:2.3:a:libtiff:libtiff:4.2.0
-
cpe:2.3:a:libtiff:libtiff:4.3.0
-
cpe:2.3:a:libtiff:libtiff:4.4.0
-
cpe:2.3:a:libtiff:libtiff:4.5.0
-
cpe:2.3:a:libtiff:libtiff:4.5.1
-
cpe:2.3:a:libtiff:libtiff:4.6.0