Lucene search
HistoryMay 19, 2023 - 3:15 p.m.
CVE-2023-30775
vulnerability
libtiff
heap buffer overflow
nvd
cve-2023-30775
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.6%
A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c.
Affected configurations
Node
libtifflibtiffRange≤4.0
CNA Affected
[
{
"vendor": "n/a",
"product": "libtiff",
"versions": [
{
"version": "4.0",
"status": "affected"
}
]
}
]Related
debiancve
debiancve
CVE-2023-30775
2023-05-19 15:15:08
redhatcve
redhatcve
CVE-2023-30775
2023-04-17 05:30:51
veracode
veracode
Heap-based Buffer Overflow
2023-05-18 07:02:10
osv
osv
CVE-2023-30775
2023-05-19 15:15:08
Moderate: libtiff security update
2023-05-09 00:00:00
prion
prion
Heap overflow
2023-05-19 15:15:00
cvelist
cvelist
CVE-2023-30775
2023-05-19 00:00:00
nvd
nvd
CVE-2023-30775
2023-05-19 15:15:08
ubuntucve
ubuntucve
CVE-2023-30775
2023-05-19 00:00:00
redos
redos
ROS-20230621-02
2023-06-21 00:00:00
nessus
nessus
AlmaLinux 9 : libtiff (ALSA-2023:2340)
2023-05-14 00:00:00
almalinux
almalinux
Moderate: libtiff security update
2023-05-09 00:00:00
oraclelinux
oraclelinux
libtiff security update
2023-05-15 00:00:00
redhat
redhat
(RHSA-2023:2340) Moderate: libtiff security update
2023-05-09 05:07:52
ibm
ibm
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.9 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.6%
Related for CVE-2023-30775