CVE-2025-61143

Опубликовано: 23 фев. 2026

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

Ссылки

https://gist.github.com/optionGo/9c024cd8e7b131463b84dc60af9bb0aa
Third Party Advisory
https://gitlab.com/libtiff/libtiff/-/issues/737
Issue Tracking
https://gitlab.com/libtiff/libtiff/-/merge_requests/755
Issue Tracking

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*

Версия до 4.7.1 (исключая)

EPSS

Процентиль: 2%

0.00013

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

CVE-2025-61143

CVSS3: 5.5

ubuntu

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

CVE-2025-61143

CVSS3: 5.5

redhat

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

CVE-2025-61143

CVSS3: 5.5

msrc

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

CVE-2025-61143

CVSS3: 5.5

debian

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a NULL pointer derefere ...

GHSA-p884-v7p5-5858

CVSS3: 5.5

github

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

EPSS

Процентиль: 2%

0.00013

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476