Vulnerability Description
A vulnerability, which was classified as problematic, has been found in TinyTIFF 3.0.0.0. This issue affects some unknown processing of the file tinytiffreader.c of the component File Handler. The manipulation leads to buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-223553 was assigned to this vulnerability.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tinytiff Project | Tinytiff | 3.0.0.0 |
Related Weaknesses (CWE)
References
- https://github.com/10cksYiqiyinHangzhouTechnology/Security-Issue-Report-of-TinyTExploitThird Party Advisory
- https://github.com/10cksYiqiyinHangzhouTechnology/Security-Issue-Report-of-TinyTThird Party Advisory
- https://vuldb.com/?ctiid.223553Third Party Advisory
- https://vuldb.com/?id.223553Third Party Advisory
- https://github.com/10cksYiqiyinHangzhouTechnology/Security-Issue-Report-of-TinyTExploitThird Party Advisory
- https://github.com/10cksYiqiyinHangzhouTechnology/Security-Issue-Report-of-TinyTThird Party Advisory
- https://vuldb.com/?ctiid.223553Third Party Advisory
- https://vuldb.com/?id.223553Third Party Advisory
FAQ
What is CVE-2023-1560?
CVE-2023-1560 is a vulnerability with a CVSS score of 2.8 (LOW). A vulnerability, which was classified as problematic, has been found in TinyTIFF 3.0.0.0. This issue affects some unknown processing of the file tinytiffreader.c of the component File Handler. The man...
How severe is CVE-2023-1560?
CVE-2023-1560 has been rated LOW with a CVSS base score of 2.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-1560?
Check the references section above for vendor advisories and patch information. Affected products include: Tinytiff Project Tinytiff.