CVE-2022-3570

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json", "name": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json", "name": "https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": ""}, {"url": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c", "name": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c", "tags": ["Patch"], "refsource": ""}, {"url": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c", "name": "https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c", "tags": ["Patch"], "refsource": ""}, {"url": "https://gitlab.com/libtiff/libtiff/-/issues/381", "name": "https://gitlab.com/libtiff/libtiff/-/issues/381", "tags": ["Exploit", "Issue Tracking", "Patch", "Third Party Advisory"], "refsource": ""}, {"url": "https://gitlab.com/libtiff/libtiff/-/issues/381", "name": "https://gitlab.com/libtiff/libtiff/-/issues/381", "tags": ["Exploit", "Issue Tracking", "Patch", "Third Party Advisory"], "refsource": ""}, {"url": "https://gitlab.com/libtiff/libtiff/-/issues/386", "name": "https://gitlab.com/libtiff/libtiff/-/issues/386", "tags": ["Exploit", "Issue Tracking", "Patch", "Third Party Advisory"], "refsource": ""}, {"url": "https://gitlab.com/libtiff/libtiff/-/issues/386", "name": "https://gitlab.com/libtiff/libtiff/-/issues/386", "tags": ["Exploit", "Issue Tracking", "Patch", "Third Party Advisory"], "refsource": ""}, {"url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "name": "[debian-lts-announce] 20230120 [SECURITY] [DLA 3278-1] tiff security update", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html", "name": "[debian-lts-announce] 20230120 [SECURITY] [DLA 3278-1] tiff security update", "tags": ["Mailing List", "Third Party Advisory"], "refsource": ""}, {"url": "https://security.netapp.com/advisory/ntap-20230203-0002/", "name": "https://security.netapp.com/advisory/ntap-20230203-0002/", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "https://security.netapp.com/advisory/ntap-20230203-0002/", "name": "https://security.netapp.com/advisory/ntap-20230203-0002/", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "https://www.debian.org/security/2023/dsa-5333", "name": "DSA-5333", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "https://www.debian.org/security/2023/dsa-5333", "name": "DSA-5333", "tags": ["Third Party Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-787"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2022-3570", "ASSIGNER": "cve@gitlab.com"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}}, "publishedDate": "2022-10-21T16:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.4.0", "versionStartIncluding": "3.9.0"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-05-07T20:15Z"}