CVE-2023-3576

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Oct 4, 2023

Updated: Mar 11, 2024

CWE ID 119

CWE ID 401

Summary

CVE-2023-3576 is a memory leak vulnerability affecting Libtiff's tiffcrop utility. This issue arises when the utility processes a specially crafted TIFF image file. An attacker can exploit this flaw to cause a memory leak, resulting in an application crash and potential denial of service. The memory leak is triggered during the manipulation of the TIFF image file by the tiffcrop utility.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

LibTIFF
Red Hat Enterprise Linux

Affected Vendors

Red Hat
Libtiff

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r8YQ4B
https://www.cve.org/CVERecord?id=CVE-2023-3576
https://nvd.nist.gov/vuln/detail/CVE-2023-3576

Back to Vulnerability Database