Lucene search
Ubuntu.comUB:CVE-2020-18768HistoryAug 22, 2023 - 12:00 a.m.
CVE-2020-18768
2023-08-2200:00:00
ubuntu.com
ubuntu.com
16
cve-2020-18768
_tiffmemcpy
tif_unix.c
denial-of-service
crafted tiff file
heap buffer overflow
libtiff 4.0.10
unix
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0
Percentile
12.7%
There exists one heap buffer overflow in _TIFFmemcpy in tif_unix.c in
libtiff 4.0.10, which allows an attacker to cause a denial-of-service
through a crafted tiff file.
Related
nvd
nvd
CVE-2020-18768
2023-08-22 19:15:55
nessus
nessus
EulerOS 2.0 SP8 : libtiff (EulerOS-SA-2024-1277)
2024-03-12 00:00:00
EulerOS Virtualization 3.0.6.0 : libtiff (EulerOS-SA-2024-1687)
2024-05-17 00:00:00
Amazon Linux 2 : libtiff (ALAS-2023-2300)
2023-10-20 00:00:00
osv
osv
CVE-2020-18768
2023-08-22 19:15:55
tiff - security update
2021-10-03 00:00:00
prion
prion
Heap overflow
2023-08-22 19:15:00
veracode
veracode
Denial Of Service (DoS)
2023-10-10 09:32:59
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1277)
2024-03-12 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1687)
2024-05-17 00:00:00
Debian: Security Advisory (DLA-2777-1)
2021-10-10 00:00:00
cve
cve
CVE-2020-18768
2023-08-22 19:15:55
redhatcve
redhatcve
CVE-2020-18768
2023-08-28 18:15:30
cvelist
cvelist
CVE-2020-18768
2023-08-22 00:00:00
debiancve
debiancve
CVE-2020-18768
2023-08-22 19:15:55
amazon
amazon
Medium: libtiff
2023-10-12 15:09:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0
Percentile
12.7%
Related for UB:CVE-2020-18768