Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-8177

Опубликовано: 26 июл. 2025
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.3

Описание

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

РелизСтатусПримечание
devel

not-affected

tool not packaged
esm-infra-legacy/trusty

needed

esm-infra/bionic

not-affected

tool not packaged
esm-infra/focal

not-affected

tool not packaged
esm-infra/xenial

needed

jammy

not-affected

tool not packaged
noble

not-affected

tool not packaged
plucky

not-affected

tool not packaged
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 2%
0.00014
Низкий

4.3 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-8177

CVSS3: 5.3
redhat
10 дней назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

nvd логотип

CVE-2025-8177

CVSS3: 5.3
nvd
10 дней назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

debian логотип

CVE-2025-8177

CVSS3: 5.3
debian
10 дней назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as ...

github логотип

GHSA-w743-578r-x56m

CVSS3: 5.3
github
10 дней назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

EPSS

Процентиль: 2%
0.00014
Низкий

4.3 Medium

CVSS2

5.3 Medium

CVSS3