Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
Typedeb
Namespacedebian
Nametiff
Version4.2.0-1+deb11u3
Qualifiers
distro trixie
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version4.2.0-1+deb11u4
Latest_non_vulnerable_version4.7.1-2
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-1mh3-q3y5-qyg1
vulnerability_id VCID-1mh3-q3y5-qyg1
summary 
Out-of-bounds Read
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1622.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1622
reference_id
reference_type
scores
0
value 0.00104
scoring_system epss
scoring_elements 0.28448
published_at 2026-04-01T12:55:00Z
1
value 0.00104
scoring_system epss
scoring_elements 0.28219
published_at 2026-04-24T12:55:00Z
2
value 0.00104
scoring_system epss
scoring_elements 0.28398
published_at 2026-04-18T12:55:00Z
3
value 0.00104
scoring_system epss
scoring_elements 0.28345
published_at 2026-04-21T12:55:00Z
4
value 0.00104
scoring_system epss
scoring_elements 0.28542
published_at 2026-04-02T12:55:00Z
5
value 0.00104
scoring_system epss
scoring_elements 0.28585
published_at 2026-04-04T12:55:00Z
6
value 0.00104
scoring_system epss
scoring_elements 0.28387
published_at 2026-04-07T12:55:00Z
7
value 0.00104
scoring_system epss
scoring_elements 0.28453
published_at 2026-04-08T12:55:00Z
8
value 0.00104
scoring_system epss
scoring_elements 0.28495
published_at 2026-04-09T12:55:00Z
9
value 0.00104
scoring_system epss
scoring_elements 0.28497
published_at 2026-04-11T12:55:00Z
10
value 0.00104
scoring_system epss
scoring_elements 0.28454
published_at 2026-04-12T12:55:00Z
11
value 0.00104
scoring_system epss
scoring_elements 0.28405
published_at 2026-04-13T12:55:00Z
12
value 0.00104
scoring_system epss
scoring_elements 0.2842
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1622
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
28
reference_url https://gitlab.com/libtiff/libtiff/-/issues/410
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/410
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2084269
reference_id 2084269
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2084269
30
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-1622
reference_id CVE-2022-1622
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-1622
32
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json
reference_id CVE-2022-1622.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json
33
reference_url https://security.gentoo.org/glsa/202210-10
reference_id GLSA-202210-10
reference_type
scores
url https://security.gentoo.org/glsa/202210-10
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-1622
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1mh3-q3y5-qyg1
1
url VCID-44ee-ueju-ykae
vulnerability_id VCID-44ee-ueju-ykae
summary libtiff: division by zero issues in tiffcrop
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2057.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2057
reference_id
reference_type
scores
0
value 0.00092
scoring_system epss
scoring_elements 0.25707
published_at 2026-04-24T12:55:00Z
1
value 0.00092
scoring_system epss
scoring_elements 0.25805
published_at 2026-04-13T12:55:00Z
2
value 0.00092
scoring_system epss
scoring_elements 0.25808
published_at 2026-04-16T12:55:00Z
3
value 0.00092
scoring_system epss
scoring_elements 0.2579
published_at 2026-04-18T12:55:00Z
4
value 0.00092
scoring_system epss
scoring_elements 0.25763
published_at 2026-04-21T12:55:00Z
5
value 0.00092
scoring_system epss
scoring_elements 0.25771
published_at 2026-04-07T12:55:00Z
6
value 0.00092
scoring_system epss
scoring_elements 0.25841
published_at 2026-04-08T12:55:00Z
7
value 0.00092
scoring_system epss
scoring_elements 0.25893
published_at 2026-04-09T12:55:00Z
8
value 0.00092
scoring_system epss
scoring_elements 0.25904
published_at 2026-04-11T12:55:00Z
9
value 0.00092
scoring_system epss
scoring_elements 0.25862
published_at 2026-04-12T12:55:00Z
10
value 0.001
scoring_system epss
scoring_elements 0.27786
published_at 2026-04-02T12:55:00Z
11
value 0.001
scoring_system epss
scoring_elements 0.27824
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2057
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/427
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/427
28
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/346
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/346
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
reference_id 1014494
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2103222
reference_id 2103222
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2103222
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2057
reference_id CVE-2022-2057
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2057
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2057.json
reference_id CVE-2022-2057.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2057.json
34
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
35
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
36
reference_url https://usn.ubuntu.com/5619-1/
reference_id USN-5619-1
reference_type
scores
url https://usn.ubuntu.com/5619-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-3?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-3%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2057
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-44ee-ueju-ykae
2
url VCID-48tr-y71p-7fbb
vulnerability_id VCID-48tr-y71p-7fbb
summary libtiff: Assertion fail in rotateImage() function at tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2520.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2520
reference_id
reference_type
scores
0
value 0.00058
scoring_system epss
scoring_elements 0.17911
published_at 2026-04-24T12:55:00Z
1
value 0.00058
scoring_system epss
scoring_elements 0.17973
published_at 2026-04-18T12:55:00Z
2
value 0.00058
scoring_system epss
scoring_elements 0.18005
published_at 2026-04-21T12:55:00Z
3
value 0.00058
scoring_system epss
scoring_elements 0.18202
published_at 2026-04-02T12:55:00Z
4
value 0.00058
scoring_system epss
scoring_elements 0.18256
published_at 2026-04-04T12:55:00Z
5
value 0.00058
scoring_system epss
scoring_elements 0.17957
published_at 2026-04-07T12:55:00Z
6
value 0.00058
scoring_system epss
scoring_elements 0.18043
published_at 2026-04-08T12:55:00Z
7
value 0.00058
scoring_system epss
scoring_elements 0.18104
published_at 2026-04-09T12:55:00Z
8
value 0.00058
scoring_system epss
scoring_elements 0.18113
published_at 2026-04-11T12:55:00Z
9
value 0.00058
scoring_system epss
scoring_elements 0.1807
published_at 2026-04-12T12:55:00Z
10
value 0.00058
scoring_system epss
scoring_elements 0.1802
published_at 2026-04-13T12:55:00Z
11
value 0.00058
scoring_system epss
scoring_elements 0.17962
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2520
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/424
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/424
28
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/378
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/378
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id 1024670
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2122792
reference_id 2122792
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2122792
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2520
reference_id CVE-2022-2520
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2520
33
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
34
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
35
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2520
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-48tr-y71p-7fbb
3
url VCID-4srx-3gbk-eqd3
vulnerability_id VCID-4srx-3gbk-eqd3
summary libtiff: out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3626.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3626.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3626
reference_id
reference_type
scores
0
value 0.00037
scoring_system epss
scoring_elements 0.10954
published_at 2026-04-13T12:55:00Z
1
value 0.00037
scoring_system epss
scoring_elements 0.10876
published_at 2026-04-07T12:55:00Z
2
value 0.00037
scoring_system epss
scoring_elements 0.11009
published_at 2026-04-11T12:55:00Z
3
value 0.00037
scoring_system epss
scoring_elements 0.11006
published_at 2026-04-09T12:55:00Z
4
value 0.00037
scoring_system epss
scoring_elements 0.10952
published_at 2026-04-08T12:55:00Z
5
value 0.00037
scoring_system epss
scoring_elements 0.10977
published_at 2026-04-12T12:55:00Z
6
value 0.00039
scoring_system epss
scoring_elements 0.11588
published_at 2026-04-24T12:55:00Z
7
value 0.00039
scoring_system epss
scoring_elements 0.11505
published_at 2026-04-16T12:55:00Z
8
value 0.00039
scoring_system epss
scoring_elements 0.11509
published_at 2026-04-18T12:55:00Z
9
value 0.00039
scoring_system epss
scoring_elements 0.11632
published_at 2026-04-21T12:55:00Z
10
value 0.0004
scoring_system epss
scoring_elements 0.12237
published_at 2026-04-04T12:55:00Z
11
value 0.0004
scoring_system epss
scoring_elements 0.12191
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3626
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id 1022555
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2142741
reference_id 2142741
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2142741
29
reference_url https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047
reference_id 236b7191f04c60d09ee836ae13b50f812c841047
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/
url https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047
30
reference_url https://gitlab.com/libtiff/libtiff/-/issues/426
reference_id 426
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/
url https://gitlab.com/libtiff/libtiff/-/issues/426
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3626
reference_id CVE-2022-3626
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3626
32
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json
reference_id CVE-2022-3626.json
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json
33
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
34
reference_url https://security.netapp.com/advisory/ntap-20230110-0001/
reference_id ntap-20230110-0001
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/
url https://security.netapp.com/advisory/ntap-20230110-0001/
35
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
36
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3626
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4srx-3gbk-eqd3
4
url VCID-6kck-g3z6-cuge
vulnerability_id VCID-6kck-g3z6-cuge
summary libtiff: uint32_t underflow leads to out of bounds read and write in tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2867.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2867
reference_id
reference_type
scores
0
value 0.00016
scoring_system epss
scoring_elements 0.03549
published_at 2026-04-24T12:55:00Z
1
value 0.00016
scoring_system epss
scoring_elements 0.03437
published_at 2026-04-13T12:55:00Z
2
value 0.00016
scoring_system epss
scoring_elements 0.03412
published_at 2026-04-16T12:55:00Z
3
value 0.00016
scoring_system epss
scoring_elements 0.03423
published_at 2026-04-18T12:55:00Z
4
value 0.00016
scoring_system epss
scoring_elements 0.03542
published_at 2026-04-21T12:55:00Z
5
value 0.00016
scoring_system epss
scoring_elements 0.03511
published_at 2026-04-07T12:55:00Z
6
value 0.00016
scoring_system epss
scoring_elements 0.03512
published_at 2026-04-08T12:55:00Z
7
value 0.00016
scoring_system epss
scoring_elements 0.03536
published_at 2026-04-09T12:55:00Z
8
value 0.00016
scoring_system epss
scoring_elements 0.0349
published_at 2026-04-11T12:55:00Z
9
value 0.00016
scoring_system epss
scoring_elements 0.03462
published_at 2026-04-12T12:55:00Z
10
value 0.00027
scoring_system epss
scoring_elements 0.0743
published_at 2026-04-02T12:55:00Z
11
value 0.00027
scoring_system epss
scoring_elements 0.07472
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2867
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2118847
reference_id 2118847
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2118847
28
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
29
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2867
reference_id CVE-2022-2867
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2867
30
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
31
reference_url https://usn.ubuntu.com/5604-1/
reference_id USN-5604-1
reference_type
scores
url https://usn.ubuntu.com/5604-1/
32
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2867
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6kck-g3z6-cuge
5
url VCID-6wzx-7a3m-ufhm
vulnerability_id VCID-6wzx-7a3m-ufhm
summary libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3627.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3627
reference_id
reference_type
scores
0
value 0.00027
scoring_system epss
scoring_elements 0.07556
published_at 2026-04-07T12:55:00Z
1
value 0.00027
scoring_system epss
scoring_elements 0.07606
published_at 2026-04-13T12:55:00Z
2
value 0.00027
scoring_system epss
scoring_elements 0.0762
published_at 2026-04-12T12:55:00Z
3
value 0.00027
scoring_system epss
scoring_elements 0.07633
published_at 2026-04-11T12:55:00Z
4
value 0.00027
scoring_system epss
scoring_elements 0.07614
published_at 2026-04-08T12:55:00Z
5
value 0.00028
scoring_system epss
scoring_elements 0.08107
published_at 2026-04-24T12:55:00Z
6
value 0.00028
scoring_system epss
scoring_elements 0.08007
published_at 2026-04-16T12:55:00Z
7
value 0.00028
scoring_system epss
scoring_elements 0.07992
published_at 2026-04-18T12:55:00Z
8
value 0.00028
scoring_system epss
scoring_elements 0.0815
published_at 2026-04-21T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.08413
published_at 2026-04-04T12:55:00Z
10
value 0.00029
scoring_system epss
scoring_elements 0.0836
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3627
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id 1022555
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2142742
reference_id 2142742
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2142742
29
reference_url https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047
reference_id 236b7191f04c60d09ee836ae13b50f812c841047
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/
url https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047
30
reference_url https://gitlab.com/libtiff/libtiff/-/issues/411
reference_id 411
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/
url https://gitlab.com/libtiff/libtiff/-/issues/411
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3627
reference_id CVE-2022-3627
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3627
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json
reference_id CVE-2022-3627.json
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json
34
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
35
reference_url https://security.netapp.com/advisory/ntap-20230110-0001/
reference_id ntap-20230110-0001
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/
url https://security.netapp.com/advisory/ntap-20230110-0001/
36
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
37
reference_url https://access.redhat.com/errata/RHSA-2023:2883
reference_id RHSA-2023:2883
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2883
38
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3627
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6wzx-7a3m-ufhm
6
url VCID-72yx-48n1-jbfs
vulnerability_id VCID-72yx-48n1-jbfs
summary 
Out-of-bounds Read
LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:624, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1623.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1623
reference_id
reference_type
scores
0
value 0.00332
scoring_system epss
scoring_elements 0.55978
published_at 2026-04-01T12:55:00Z
1
value 0.00332
scoring_system epss
scoring_elements 0.56145
published_at 2026-04-09T12:55:00Z
2
value 0.00332
scoring_system epss
scoring_elements 0.56133
published_at 2026-04-12T12:55:00Z
3
value 0.00332
scoring_system epss
scoring_elements 0.56117
published_at 2026-04-13T12:55:00Z
4
value 0.00332
scoring_system epss
scoring_elements 0.56151
published_at 2026-04-16T12:55:00Z
5
value 0.00332
scoring_system epss
scoring_elements 0.56153
published_at 2026-04-18T12:55:00Z
6
value 0.00332
scoring_system epss
scoring_elements 0.56089
published_at 2026-04-07T12:55:00Z
7
value 0.00332
scoring_system epss
scoring_elements 0.56109
published_at 2026-04-04T12:55:00Z
8
value 0.00332
scoring_system epss
scoring_elements 0.5614
published_at 2026-04-08T12:55:00Z
9
value 0.00332
scoring_system epss
scoring_elements 0.56157
published_at 2026-04-11T12:55:00Z
10
value 0.00342
scoring_system epss
scoring_elements 0.56806
published_at 2026-04-24T12:55:00Z
11
value 0.00342
scoring_system epss
scoring_elements 0.56865
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1623
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
28
reference_url https://gitlab.com/libtiff/libtiff/-/issues/410
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/410
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2084260
reference_id 2084260
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2084260
30
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-1623
reference_id CVE-2022-1623
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-1623
32
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json
reference_id CVE-2022-1623.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json
33
reference_url https://security.gentoo.org/glsa/202210-10
reference_id GLSA-202210-10
reference_type
scores
url https://security.gentoo.org/glsa/202210-10
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-1623
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-72yx-48n1-jbfs
7
url VCID-76g4-kacn-7yg7
vulnerability_id VCID-76g4-kacn-7yg7
summary libtiff: Double free or corruption in rotateImage() function at tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2519.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2519
reference_id
reference_type
scores
0
value 0.00124
scoring_system epss
scoring_elements 0.31448
published_at 2026-04-24T12:55:00Z
1
value 0.00124
scoring_system epss
scoring_elements 0.31657
published_at 2026-04-18T12:55:00Z
2
value 0.00124
scoring_system epss
scoring_elements 0.31625
published_at 2026-04-21T12:55:00Z
3
value 0.00124
scoring_system epss
scoring_elements 0.31775
published_at 2026-04-02T12:55:00Z
4
value 0.00124
scoring_system epss
scoring_elements 0.31819
published_at 2026-04-04T12:55:00Z
5
value 0.00124
scoring_system epss
scoring_elements 0.31638
published_at 2026-04-07T12:55:00Z
6
value 0.00124
scoring_system epss
scoring_elements 0.31689
published_at 2026-04-08T12:55:00Z
7
value 0.00124
scoring_system epss
scoring_elements 0.31718
published_at 2026-04-09T12:55:00Z
8
value 0.00124
scoring_system epss
scoring_elements 0.31722
published_at 2026-04-11T12:55:00Z
9
value 0.00124
scoring_system epss
scoring_elements 0.31681
published_at 2026-04-12T12:55:00Z
10
value 0.00124
scoring_system epss
scoring_elements 0.31644
published_at 2026-04-13T12:55:00Z
11
value 0.00124
scoring_system epss
scoring_elements 0.31678
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2519
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/423
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/423
28
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/378
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/378
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id 1024670
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2122789
reference_id 2122789
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2122789
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2519
reference_id CVE-2022-2519
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2519
33
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
34
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
35
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2519
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-76g4-kacn-7yg7
8
url VCID-8691-q4h3-eyaf
vulnerability_id VCID-8691-q4h3-eyaf
summary libtiff: division by zero issues in tiffcrop
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2058.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2058
reference_id
reference_type
scores
0
value 0.00092
scoring_system epss
scoring_elements 0.25707
published_at 2026-04-24T12:55:00Z
1
value 0.00092
scoring_system epss
scoring_elements 0.25805
published_at 2026-04-13T12:55:00Z
2
value 0.00092
scoring_system epss
scoring_elements 0.25808
published_at 2026-04-16T12:55:00Z
3
value 0.00092
scoring_system epss
scoring_elements 0.2579
published_at 2026-04-18T12:55:00Z
4
value 0.00092
scoring_system epss
scoring_elements 0.25763
published_at 2026-04-21T12:55:00Z
5
value 0.00092
scoring_system epss
scoring_elements 0.25771
published_at 2026-04-07T12:55:00Z
6
value 0.00092
scoring_system epss
scoring_elements 0.25841
published_at 2026-04-08T12:55:00Z
7
value 0.00092
scoring_system epss
scoring_elements 0.25893
published_at 2026-04-09T12:55:00Z
8
value 0.00092
scoring_system epss
scoring_elements 0.25904
published_at 2026-04-11T12:55:00Z
9
value 0.00092
scoring_system epss
scoring_elements 0.25862
published_at 2026-04-12T12:55:00Z
10
value 0.001
scoring_system epss
scoring_elements 0.27786
published_at 2026-04-02T12:55:00Z
11
value 0.001
scoring_system epss
scoring_elements 0.27824
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2058
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/428
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/428
28
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/346
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/346
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
reference_id 1014494
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2103222
reference_id 2103222
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2103222
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2058
reference_id CVE-2022-2058
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2058
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2058.json
reference_id CVE-2022-2058.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2058.json
34
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
35
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
36
reference_url https://usn.ubuntu.com/5619-1/
reference_id USN-5619-1
reference_type
scores
url https://usn.ubuntu.com/5619-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-3?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-3%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2058
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8691-q4h3-eyaf
9
url VCID-9gqh-2uat-93c7
vulnerability_id VCID-9gqh-2uat-93c7
summary 
Out-of-bounds Write
A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30774
reference_id
reference_type
scores
0
value 0.00022
scoring_system epss
scoring_elements 0.06072
published_at 2026-04-24T12:55:00Z
1
value 0.00022
scoring_system epss
scoring_elements 0.05899
published_at 2026-04-18T12:55:00Z
2
value 0.00022
scoring_system epss
scoring_elements 0.0605
published_at 2026-04-21T12:55:00Z
3
value 0.00024
scoring_system epss
scoring_elements 0.06671
published_at 2026-04-08T12:55:00Z
4
value 0.00024
scoring_system epss
scoring_elements 0.06705
published_at 2026-04-09T12:55:00Z
5
value 0.00024
scoring_system epss
scoring_elements 0.06704
published_at 2026-04-11T12:55:00Z
6
value 0.00024
scoring_system epss
scoring_elements 0.06697
published_at 2026-04-12T12:55:00Z
7
value 0.00024
scoring_system epss
scoring_elements 0.06688
published_at 2026-04-13T12:55:00Z
8
value 0.00024
scoring_system epss
scoring_elements 0.06621
published_at 2026-04-16T12:55:00Z
9
value 0.00024
scoring_system epss
scoring_elements 0.06598
published_at 2026-04-02T12:55:00Z
10
value 0.00024
scoring_system epss
scoring_elements 0.06642
published_at 2026-04-04T12:55:00Z
11
value 0.00024
scoring_system epss
scoring_elements 0.06622
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30774
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2187139
reference_id
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2187139
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30774
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30774
4
reference_url https://gitlab.com/libtiff/libtiff/-/issues/463
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/463
5
reference_url https://access.redhat.com/security/cve/CVE-2023-30774
reference_id CVE-2023-30774
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2023-30774
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-30774
reference_id CVE-2023-30774
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-30774
7
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2023-30774
risk_score 2.8
exploitability 0.5
weighted_severity 5.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9gqh-2uat-93c7
10
url VCID-ap6w-9c6j-akdp
vulnerability_id VCID-ap6w-9c6j-akdp
summary libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2521.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2521
reference_id
reference_type
scores
0
value 0.00124
scoring_system epss
scoring_elements 0.31448
published_at 2026-04-24T12:55:00Z
1
value 0.00124
scoring_system epss
scoring_elements 0.31657
published_at 2026-04-18T12:55:00Z
2
value 0.00124
scoring_system epss
scoring_elements 0.31625
published_at 2026-04-21T12:55:00Z
3
value 0.00124
scoring_system epss
scoring_elements 0.31775
published_at 2026-04-02T12:55:00Z
4
value 0.00124
scoring_system epss
scoring_elements 0.31819
published_at 2026-04-04T12:55:00Z
5
value 0.00124
scoring_system epss
scoring_elements 0.31638
published_at 2026-04-07T12:55:00Z
6
value 0.00124
scoring_system epss
scoring_elements 0.31689
published_at 2026-04-08T12:55:00Z
7
value 0.00124
scoring_system epss
scoring_elements 0.31718
published_at 2026-04-09T12:55:00Z
8
value 0.00124
scoring_system epss
scoring_elements 0.31722
published_at 2026-04-11T12:55:00Z
9
value 0.00124
scoring_system epss
scoring_elements 0.31681
published_at 2026-04-12T12:55:00Z
10
value 0.00124
scoring_system epss
scoring_elements 0.31644
published_at 2026-04-13T12:55:00Z
11
value 0.00124
scoring_system epss
scoring_elements 0.31678
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2521
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/422
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/422
28
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/378
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/378
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id 1024670
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2122799
reference_id 2122799
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2122799
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2521
reference_id CVE-2022-2521
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2521
33
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
34
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
35
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2521
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ap6w-9c6j-akdp
11
url VCID-as9s-4ugc-ukgy
vulnerability_id VCID-as9s-4ugc-ukgy
summary Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1354.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1354.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1354
reference_id
reference_type
scores
0
value 0.00038
scoring_system epss
scoring_elements 0.11193
published_at 2026-04-01T12:55:00Z
1
value 0.00038
scoring_system epss
scoring_elements 0.11337
published_at 2026-04-02T12:55:00Z
2
value 0.00038
scoring_system epss
scoring_elements 0.11395
published_at 2026-04-04T12:55:00Z
3
value 0.00038
scoring_system epss
scoring_elements 0.11188
published_at 2026-04-07T12:55:00Z
4
value 0.00038
scoring_system epss
scoring_elements 0.11268
published_at 2026-04-08T12:55:00Z
5
value 0.00038
scoring_system epss
scoring_elements 0.11323
published_at 2026-04-09T12:55:00Z
6
value 0.00038
scoring_system epss
scoring_elements 0.11269
published_at 2026-04-13T12:55:00Z
7
value 0.00038
scoring_system epss
scoring_elements 0.11131
published_at 2026-04-16T12:55:00Z
8
value 0.00038
scoring_system epss
scoring_elements 0.11133
published_at 2026-04-18T12:55:00Z
9
value 0.00038
scoring_system epss
scoring_elements 0.11329
published_at 2026-04-11T12:55:00Z
10
value 0.00038
scoring_system epss
scoring_elements 0.11295
published_at 2026-04-12T12:55:00Z
11
value 0.00052
scoring_system epss
scoring_elements 0.16261
published_at 2026-04-24T12:55:00Z
12
value 0.00052
scoring_system epss
scoring_elements 0.16367
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1354
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/319
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/319
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2074404
reference_id 2074404
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2074404
29
reference_url https://security.archlinux.org/AVG-2721
reference_id AVG-2721
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2721
30
reference_url https://access.redhat.com/security/cve/CVE-2022-1354
reference_id CVE-2022-1354
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2022-1354
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-1354
reference_id CVE-2022-1354
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-1354
32
reference_url https://security.gentoo.org/glsa/202210-10
reference_id GLSA-202210-10
reference_type
scores
url https://security.gentoo.org/glsa/202210-10
33
reference_url https://access.redhat.com/errata/RHSA-2022:8194
reference_id RHSA-2022:8194
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8194
34
reference_url https://usn.ubuntu.com/5619-1/
reference_id USN-5619-1
reference_type
scores
url https://usn.ubuntu.com/5619-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.3.0-7?distro=trixie
purl pkg:deb/debian/tiff@4.3.0-7?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.3.0-7%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-1354
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-as9s-4ugc-ukgy
12
url VCID-bnbg-7q6h-8uhs
vulnerability_id VCID-bnbg-7q6h-8uhs
summary 
Out-of-bounds Write
Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.
references
0
reference_url http://libtiff-release-v4-0-7.com
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/
url http://libtiff-release-v4-0-7.com
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-30086
reference_id
reference_type
scores
0
value 0.00079
scoring_system epss
scoring_elements 0.23195
published_at 2026-04-24T12:55:00Z
1
value 0.00079
scoring_system epss
scoring_elements 0.23524
published_at 2026-04-02T12:55:00Z
2
value 0.00079
scoring_system epss
scoring_elements 0.23467
published_at 2026-04-09T12:55:00Z
3
value 0.00079
scoring_system epss
scoring_elements 0.23485
published_at 2026-04-11T12:55:00Z
4
value 0.00079
scoring_system epss
scoring_elements 0.23446
published_at 2026-04-12T12:55:00Z
5
value 0.00079
scoring_system epss
scoring_elements 0.23391
published_at 2026-04-13T12:55:00Z
6
value 0.00079
scoring_system epss
scoring_elements 0.23409
published_at 2026-04-16T12:55:00Z
7
value 0.00079
scoring_system epss
scoring_elements 0.23403
published_at 2026-04-18T12:55:00Z
8
value 0.00079
scoring_system epss
scoring_elements 0.23386
published_at 2026-04-21T12:55:00Z
9
value 0.00079
scoring_system epss
scoring_elements 0.23561
published_at 2026-04-04T12:55:00Z
10
value 0.00079
scoring_system epss
scoring_elements 0.23344
published_at 2026-04-07T12:55:00Z
11
value 0.00079
scoring_system epss
scoring_elements 0.23416
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-30086
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30086
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30086
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://gitlab.com/libtiff/libtiff/-/issues/538
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/
url https://gitlab.com/libtiff/libtiff/-/issues/538
6
reference_url http://tiffcp.com
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/
url http://tiffcp.com
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2203650
reference_id 2203650
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2203650
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-30086
reference_id CVE-2023-30086
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-30086
9
reference_url https://security.netapp.com/advisory/ntap-20230616-0003/
reference_id ntap-20230616-0003
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/
url https://security.netapp.com/advisory/ntap-20230616-0003/
10
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2023-30086
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bnbg-7q6h-8uhs
13
url VCID-e6c2-ajs1-abdz
vulnerability_id VCID-e6c2-ajs1-abdz
summary libtiff: out-of-bounds read in writeSingleSection in tools/tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3599.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3599
reference_id
reference_type
scores
0
value 0.00037
scoring_system epss
scoring_elements 0.10852
published_at 2026-04-07T12:55:00Z
1
value 0.00037
scoring_system epss
scoring_elements 0.10952
published_at 2026-04-12T12:55:00Z
2
value 0.00037
scoring_system epss
scoring_elements 0.10984
published_at 2026-04-11T12:55:00Z
3
value 0.00037
scoring_system epss
scoring_elements 0.10983
published_at 2026-04-09T12:55:00Z
4
value 0.00037
scoring_system epss
scoring_elements 0.10928
published_at 2026-04-13T12:55:00Z
5
value 0.00039
scoring_system epss
scoring_elements 0.1155
published_at 2026-04-24T12:55:00Z
6
value 0.00039
scoring_system epss
scoring_elements 0.11468
published_at 2026-04-16T12:55:00Z
7
value 0.00039
scoring_system epss
scoring_elements 0.1147
published_at 2026-04-18T12:55:00Z
8
value 0.00039
scoring_system epss
scoring_elements 0.11596
published_at 2026-04-21T12:55:00Z
9
value 0.0004
scoring_system epss
scoring_elements 0.12214
published_at 2026-04-04T12:55:00Z
10
value 0.0004
scoring_system epss
scoring_elements 0.12168
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3599
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/
url https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246
28
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id 1022555
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2142740
reference_id 2142740
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2142740
30
reference_url https://gitlab.com/libtiff/libtiff/-/issues/398
reference_id 398
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/
url https://gitlab.com/libtiff/libtiff/-/issues/398
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3599
reference_id CVE-2022-3599
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3599
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json
reference_id CVE-2022-3599.json
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json
34
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
35
reference_url https://security.netapp.com/advisory/ntap-20230110-0001/
reference_id ntap-20230110-0001
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/
url https://security.netapp.com/advisory/ntap-20230110-0001/
36
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
37
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3599
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e6c2-ajs1-abdz
14
url VCID-jdv4-3mf6-93hm
vulnerability_id VCID-jdv4-3mf6-93hm
summary libtiff: integer overflow in function TIFFReadRGBATileExt of the file
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3970
reference_id
reference_type
scores
0
value 0.00097
scoring_system epss
scoring_elements 0.26732
published_at 2026-04-21T12:55:00Z
1
value 0.00097
scoring_system epss
scoring_elements 0.26891
published_at 2026-04-11T12:55:00Z
2
value 0.00097
scoring_system epss
scoring_elements 0.26798
published_at 2026-04-16T12:55:00Z
3
value 0.00097
scoring_system epss
scoring_elements 0.2679
published_at 2026-04-13T12:55:00Z
4
value 0.00097
scoring_system epss
scoring_elements 0.26847
published_at 2026-04-12T12:55:00Z
5
value 0.00097
scoring_system epss
scoring_elements 0.2677
published_at 2026-04-18T12:55:00Z
6
value 0.00106
scoring_system epss
scoring_elements 0.28622
published_at 2026-04-07T12:55:00Z
7
value 0.00106
scoring_system epss
scoring_elements 0.28727
published_at 2026-04-09T12:55:00Z
8
value 0.00106
scoring_system epss
scoring_elements 0.28688
published_at 2026-04-08T12:55:00Z
9
value 0.00106
scoring_system epss
scoring_elements 0.28816
published_at 2026-04-04T12:55:00Z
10
value 0.0011
scoring_system epss
scoring_elements 0.29209
published_at 2026-04-24T12:55:00Z
11
value 0.00112
scoring_system epss
scoring_elements 0.29854
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3970
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737
reference_id 1024737
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2148918
reference_id 2148918
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2148918
29
reference_url https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be
reference_id 227500897dfb07fb7d27f7aa570050e62617e3be
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be
30
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3970
reference_id CVE-2022-3970
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3970
32
reference_url https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137
reference_id detail?id=53137
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137
33
reference_url https://oss-fuzz.com/download?testcase_id=5738253143900160
reference_id download?testcase_id=5738253143900160
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://oss-fuzz.com/download?testcase_id=5738253143900160
34
reference_url https://support.apple.com/kb/HT213841
reference_id HT213841
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://support.apple.com/kb/HT213841
35
reference_url https://support.apple.com/kb/HT213843
reference_id HT213843
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://support.apple.com/kb/HT213843
36
reference_url https://vuldb.com/?id.213549
reference_id ?id.213549
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://vuldb.com/?id.213549
37
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
38
reference_url https://security.netapp.com/advisory/ntap-20221215-0009/
reference_id ntap-20221215-0009
reference_type
scores
0
value 6.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/
url https://security.netapp.com/advisory/ntap-20221215-0009/
39
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
40
reference_url https://access.redhat.com/errata/RHSA-2023:2883
reference_id RHSA-2023:2883
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2883
41
reference_url https://usn.ubuntu.com/5743-1/
reference_id USN-5743-1
reference_type
scores
url https://usn.ubuntu.com/5743-1/
42
reference_url https://usn.ubuntu.com/5743-2/
reference_id USN-5743-2
reference_type
scores
url https://usn.ubuntu.com/5743-2/
43
reference_url https://usn.ubuntu.com/5841-1/
reference_id USN-5841-1
reference_type
scores
url https://usn.ubuntu.com/5841-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3970
risk_score 4.0
exploitability 0.5
weighted_severity 7.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jdv4-3mf6-93hm
15
url VCID-ju1t-bhyh-v7du
vulnerability_id VCID-ju1t-bhyh-v7du
summary 
Out-of-bounds Write
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-48281
reference_id
reference_type
scores
0
value 0.0001
scoring_system epss
scoring_elements 0.01153
published_at 2026-04-24T12:55:00Z
1
value 0.0001
scoring_system epss
scoring_elements 0.01091
published_at 2026-04-02T12:55:00Z
2
value 0.0001
scoring_system epss
scoring_elements 0.01093
published_at 2026-04-04T12:55:00Z
3
value 0.0001
scoring_system epss
scoring_elements 0.01099
published_at 2026-04-07T12:55:00Z
4
value 0.0001
scoring_system epss
scoring_elements 0.01104
published_at 2026-04-08T12:55:00Z
5
value 0.0001
scoring_system epss
scoring_elements 0.01105
published_at 2026-04-09T12:55:00Z
6
value 0.0001
scoring_system epss
scoring_elements 0.01089
published_at 2026-04-11T12:55:00Z
7
value 0.0001
scoring_system epss
scoring_elements 0.01082
published_at 2026-04-12T12:55:00Z
8
value 0.0001
scoring_system epss
scoring_elements 0.01084
published_at 2026-04-13T12:55:00Z
9
value 0.0001
scoring_system epss
scoring_elements 0.01077
published_at 2026-04-16T12:55:00Z
10
value 0.0001
scoring_system epss
scoring_elements 0.01087
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-48281
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/
url https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5
28
reference_url https://gitlab.com/libtiff/libtiff/-/issues/488
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/
url https://gitlab.com/libtiff/libtiff/-/issues/488
29
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html
30
reference_url https://www.debian.org/security/2023/dsa-5333
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/
url https://www.debian.org/security/2023/dsa-5333
31
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653
reference_id 1029653
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653
32
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2163606
reference_id 2163606
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2163606
33
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
34
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-48281
reference_id CVE-2022-48281
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-48281
35
reference_url https://security.gentoo.org/glsa/202305-31
reference_id GLSA-202305-31
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/
url https://security.gentoo.org/glsa/202305-31
36
reference_url https://security.netapp.com/advisory/ntap-20230302-0004/
reference_id ntap-20230302-0004
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/
url https://security.netapp.com/advisory/ntap-20230302-0004/
37
reference_url https://access.redhat.com/errata/RHSA-2023:3711
reference_id RHSA-2023:3711
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:3711
38
reference_url https://access.redhat.com/errata/RHSA-2023:3827
reference_id RHSA-2023:3827
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:3827
39
reference_url https://usn.ubuntu.com/5841-1/
reference_id USN-5841-1
reference_type
scores
url https://usn.ubuntu.com/5841-1/
40
reference_url https://usn.ubuntu.com/6290-1/
reference_id USN-6290-1
reference_type
scores
url https://usn.ubuntu.com/6290-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.5.0-4?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-4%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-48281
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ju1t-bhyh-v7du
16
url VCID-rmap-8g2y-abdc
vulnerability_id VCID-rmap-8g2y-abdc
summary libtiff: out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3598.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3598.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3598
reference_id
reference_type
scores
0
value 0.00039
scoring_system epss
scoring_elements 0.11913
published_at 2026-04-02T12:55:00Z
1
value 0.00039
scoring_system epss
scoring_elements 0.11827
published_at 2026-04-13T12:55:00Z
2
value 0.00039
scoring_system epss
scoring_elements 0.11854
published_at 2026-04-12T12:55:00Z
3
value 0.00039
scoring_system epss
scoring_elements 0.11893
published_at 2026-04-11T12:55:00Z
4
value 0.00039
scoring_system epss
scoring_elements 0.11882
published_at 2026-04-09T12:55:00Z
5
value 0.00039
scoring_system epss
scoring_elements 0.1183
published_at 2026-04-08T12:55:00Z
6
value 0.00039
scoring_system epss
scoring_elements 0.11959
published_at 2026-04-04T12:55:00Z
7
value 0.00039
scoring_system epss
scoring_elements 0.11747
published_at 2026-04-07T12:55:00Z
8
value 0.00041
scoring_system epss
scoring_elements 0.12556
published_at 2026-04-24T12:55:00Z
9
value 0.00041
scoring_system epss
scoring_elements 0.1243
published_at 2026-04-16T12:55:00Z
10
value 0.00041
scoring_system epss
scoring_elements 0.12434
published_at 2026-04-18T12:55:00Z
11
value 0.00041
scoring_system epss
scoring_elements 0.12548
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3598
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id 1022555
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2142738
reference_id 2142738
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2142738
29
reference_url https://gitlab.com/libtiff/libtiff/-/issues/435
reference_id 435
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/
url https://gitlab.com/libtiff/libtiff/-/issues/435
30
reference_url https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff
reference_id cfbb883bf6ea7bedcb04177cc4e52d304522fdff
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/
url https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff
31
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3598
reference_id CVE-2022-3598
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3598
32
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json
reference_id CVE-2022-3598.json
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json
33
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
34
reference_url https://security.netapp.com/advisory/ntap-20230110-0001/
reference_id ntap-20230110-0001
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/
url https://security.netapp.com/advisory/ntap-20230110-0001/
35
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
36
reference_url https://usn.ubuntu.com/5705-1/
reference_id USN-5705-1
reference_type
scores
url https://usn.ubuntu.com/5705-1/
37
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3598
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rmap-8g2y-abdc
17
url VCID-ruhz-ty5e-nkgr
vulnerability_id VCID-ruhz-ty5e-nkgr
summary libtiff: tiffcrop.c has uint32_t underflow which leads to out of bounds read and write in extractContigSamples8bits()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2869.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2869
reference_id
reference_type
scores
0
value 0.00025
scoring_system epss
scoring_elements 0.06831
published_at 2026-04-24T12:55:00Z
1
value 0.00025
scoring_system epss
scoring_elements 0.06669
published_at 2026-04-18T12:55:00Z
2
value 0.00025
scoring_system epss
scoring_elements 0.06826
published_at 2026-04-21T12:55:00Z
3
value 0.00025
scoring_system epss
scoring_elements 0.06652
published_at 2026-04-02T12:55:00Z
4
value 0.00025
scoring_system epss
scoring_elements 0.06696
published_at 2026-04-04T12:55:00Z
5
value 0.00025
scoring_system epss
scoring_elements 0.06679
published_at 2026-04-16T12:55:00Z
6
value 0.00025
scoring_system epss
scoring_elements 0.06729
published_at 2026-04-08T12:55:00Z
7
value 0.00025
scoring_system epss
scoring_elements 0.06762
published_at 2026-04-09T12:55:00Z
8
value 0.00025
scoring_system epss
scoring_elements 0.06763
published_at 2026-04-11T12:55:00Z
9
value 0.00025
scoring_system epss
scoring_elements 0.06755
published_at 2026-04-12T12:55:00Z
10
value 0.00025
scoring_system epss
scoring_elements 0.06749
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2869
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2118869
reference_id 2118869
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2118869
28
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
29
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2869
reference_id CVE-2022-2869
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2869
30
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
31
reference_url https://usn.ubuntu.com/5604-1/
reference_id USN-5604-1
reference_type
scores
url https://usn.ubuntu.com/5604-1/
32
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2869
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ruhz-ty5e-nkgr
18
url VCID-s95z-s4sd-cffs
vulnerability_id VCID-s95z-s4sd-cffs
summary libtiff: division by zero issues in tiffcrop
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2056.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2056
reference_id
reference_type
scores
0
value 0.00092
scoring_system epss
scoring_elements 0.25707
published_at 2026-04-24T12:55:00Z
1
value 0.00092
scoring_system epss
scoring_elements 0.25805
published_at 2026-04-13T12:55:00Z
2
value 0.00092
scoring_system epss
scoring_elements 0.25808
published_at 2026-04-16T12:55:00Z
3
value 0.00092
scoring_system epss
scoring_elements 0.2579
published_at 2026-04-18T12:55:00Z
4
value 0.00092
scoring_system epss
scoring_elements 0.25763
published_at 2026-04-21T12:55:00Z
5
value 0.00092
scoring_system epss
scoring_elements 0.25771
published_at 2026-04-07T12:55:00Z
6
value 0.00092
scoring_system epss
scoring_elements 0.25841
published_at 2026-04-08T12:55:00Z
7
value 0.00092
scoring_system epss
scoring_elements 0.25893
published_at 2026-04-09T12:55:00Z
8
value 0.00092
scoring_system epss
scoring_elements 0.25904
published_at 2026-04-11T12:55:00Z
9
value 0.00092
scoring_system epss
scoring_elements 0.25862
published_at 2026-04-12T12:55:00Z
10
value 0.001
scoring_system epss
scoring_elements 0.27786
published_at 2026-04-02T12:55:00Z
11
value 0.001
scoring_system epss
scoring_elements 0.27824
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2056
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/415
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/415
28
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/346
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/346
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
reference_id 1014494
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2103222
reference_id 2103222
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2103222
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2056
reference_id CVE-2022-2056
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2056
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2056.json
reference_id CVE-2022-2056.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2056.json
34
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
35
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
36
reference_url https://usn.ubuntu.com/5619-1/
reference_id USN-5619-1
reference_type
scores
url https://usn.ubuntu.com/5619-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-3?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-3%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2056
risk_score 2.3
exploitability 0.5
weighted_severity 4.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s95z-s4sd-cffs
19
url VCID-tddn-m5ke-euas
vulnerability_id VCID-tddn-m5ke-euas
summary libtiff: A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34526.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-34526
reference_id
reference_type
scores
0
value 0.00203
scoring_system epss
scoring_elements 0.42339
published_at 2026-04-24T12:55:00Z
1
value 0.00203
scoring_system epss
scoring_elements 0.42474
published_at 2026-04-18T12:55:00Z
2
value 0.00203
scoring_system epss
scoring_elements 0.42403
published_at 2026-04-21T12:55:00Z
3
value 0.00203
scoring_system epss
scoring_elements 0.42465
published_at 2026-04-02T12:55:00Z
4
value 0.00203
scoring_system epss
scoring_elements 0.42495
published_at 2026-04-04T12:55:00Z
5
value 0.00203
scoring_system epss
scoring_elements 0.42433
published_at 2026-04-07T12:55:00Z
6
value 0.00203
scoring_system epss
scoring_elements 0.42484
published_at 2026-04-08T12:55:00Z
7
value 0.00203
scoring_system epss
scoring_elements 0.42493
published_at 2026-04-09T12:55:00Z
8
value 0.00203
scoring_system epss
scoring_elements 0.42516
published_at 2026-04-11T12:55:00Z
9
value 0.00203
scoring_system epss
scoring_elements 0.42479
published_at 2026-04-12T12:55:00Z
10
value 0.00203
scoring_system epss
scoring_elements 0.42449
published_at 2026-04-13T12:55:00Z
11
value 0.00203
scoring_system epss
scoring_elements 0.42499
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-34526
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/issues/433
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/433
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2112756
reference_id 2112756
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2112756
29
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
30
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-34526
reference_id CVE-2022-34526
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-34526
31
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-4?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-4?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-4%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-34526
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tddn-m5ke-euas
20
url VCID-tfyj-y9q3-t3ar
vulnerability_id VCID-tfyj-y9q3-t3ar
summary libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2953.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2953
reference_id
reference_type
scores
0
value 0.00018
scoring_system epss
scoring_elements 0.0445
published_at 2026-04-24T12:55:00Z
1
value 0.00018
scoring_system epss
scoring_elements 0.04325
published_at 2026-04-13T12:55:00Z
2
value 0.00018
scoring_system epss
scoring_elements 0.04297
published_at 2026-04-16T12:55:00Z
3
value 0.00018
scoring_system epss
scoring_elements 0.04305
published_at 2026-04-18T12:55:00Z
4
value 0.00018
scoring_system epss
scoring_elements 0.04434
published_at 2026-04-21T12:55:00Z
5
value 0.00018
scoring_system epss
scoring_elements 0.04318
published_at 2026-04-07T12:55:00Z
6
value 0.00018
scoring_system epss
scoring_elements 0.04351
published_at 2026-04-08T12:55:00Z
7
value 0.00018
scoring_system epss
scoring_elements 0.04366
published_at 2026-04-09T12:55:00Z
8
value 0.00018
scoring_system epss
scoring_elements 0.04359
published_at 2026-04-11T12:55:00Z
9
value 0.00018
scoring_system epss
scoring_elements 0.04346
published_at 2026-04-12T12:55:00Z
10
value 0.00027
scoring_system epss
scoring_elements 0.0764
published_at 2026-04-02T12:55:00Z
11
value 0.00027
scoring_system epss
scoring_elements 0.07683
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2953
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/48d6ece8389b01129e7d357f0985c8f938ce3da3
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/commit/48d6ece8389b01129e7d357f0985c8f938ce3da3
28
reference_url https://gitlab.com/libtiff/libtiff/-/issues/414
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/414
29
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id 1024670
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
30
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2134432
reference_id 2134432
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2134432
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2953
reference_id CVE-2022-2953
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2953
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2953.json
reference_id CVE-2022-2953.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-2953.json
34
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
35
reference_url https://access.redhat.com/errata/RHSA-2023:0302
reference_id RHSA-2023:0302
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0302
36
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2953
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tfyj-y9q3-t3ar
21
url VCID-tgf9-ax81-fub4
vulnerability_id VCID-tgf9-ax81-fub4
summary libtiff: heap Buffer overflows in tiffcrop.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3570.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3570
reference_id
reference_type
scores
0
value 7e-05
scoring_system epss
scoring_elements 0.00643
published_at 2026-04-24T12:55:00Z
1
value 7e-05
scoring_system epss
scoring_elements 0.00597
published_at 2026-04-16T12:55:00Z
2
value 7e-05
scoring_system epss
scoring_elements 0.00645
published_at 2026-04-21T12:55:00Z
3
value 7e-05
scoring_system epss
scoring_elements 0.0062
published_at 2026-04-02T12:55:00Z
4
value 7e-05
scoring_system epss
scoring_elements 0.00612
published_at 2026-04-04T12:55:00Z
5
value 7e-05
scoring_system epss
scoring_elements 0.00614
published_at 2026-04-07T12:55:00Z
6
value 7e-05
scoring_system epss
scoring_elements 0.00613
published_at 2026-04-08T12:55:00Z
7
value 7e-05
scoring_system epss
scoring_elements 0.00607
published_at 2026-04-09T12:55:00Z
8
value 7e-05
scoring_system epss
scoring_elements 0.00605
published_at 2026-04-11T12:55:00Z
9
value 7e-05
scoring_system epss
scoring_elements 0.00602
published_at 2026-04-12T12:55:00Z
10
value 7e-05
scoring_system epss
scoring_elements 0.00603
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3570
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/commit/bd94a9b383d8755a27b5a1bc27660b8ad10b094c
28
reference_url https://gitlab.com/libtiff/libtiff/-/issues/381
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/381
29
reference_url https://gitlab.com/libtiff/libtiff/-/issues/386
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/386
30
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id 1022555
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
31
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2142734
reference_id 2142734
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2142734
32
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
33
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3570
reference_id CVE-2022-3570
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3570
34
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json
reference_id CVE-2022-3570.JSON
reference_type
scores
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3570.json
35
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
36
reference_url https://usn.ubuntu.com/5705-1/
reference_id USN-5705-1
reference_type
scores
url https://usn.ubuntu.com/5705-1/
37
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3570
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tgf9-ax81-fub4
22
url VCID-ucr1-vp5p-jqck
vulnerability_id VCID-ucr1-vp5p-jqck
summary Multiple vulnerabilities have been found in LibTIFF, the worst of which could result in denial of service.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1355.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1355.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-1355
reference_id
reference_type
scores
0
value 0.0005
scoring_system epss
scoring_elements 0.15516
published_at 2026-04-04T12:55:00Z
1
value 0.0005
scoring_system epss
scoring_elements 0.15406
published_at 2026-04-01T12:55:00Z
2
value 0.0005
scoring_system epss
scoring_elements 0.15447
published_at 2026-04-02T12:55:00Z
3
value 0.00054
scoring_system epss
scoring_elements 0.17135
published_at 2026-04-09T12:55:00Z
4
value 0.00054
scoring_system epss
scoring_elements 0.16989
published_at 2026-04-07T12:55:00Z
5
value 0.00054
scoring_system epss
scoring_elements 0.17079
published_at 2026-04-08T12:55:00Z
6
value 0.00054
scoring_system epss
scoring_elements 0.17002
published_at 2026-04-13T12:55:00Z
7
value 0.00054
scoring_system epss
scoring_elements 0.16937
published_at 2026-04-16T12:55:00Z
8
value 0.00054
scoring_system epss
scoring_elements 0.16938
published_at 2026-04-18T12:55:00Z
9
value 0.00054
scoring_system epss
scoring_elements 0.17111
published_at 2026-04-11T12:55:00Z
10
value 0.00054
scoring_system epss
scoring_elements 0.17064
published_at 2026-04-12T12:55:00Z
11
value 0.00076
scoring_system epss
scoring_elements 0.22517
published_at 2026-04-24T12:55:00Z
12
value 0.00076
scoring_system epss
scoring_elements 0.22674
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-1355
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://gitlab.com/libtiff/libtiff/-/issues/400
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/issues/400
27
reference_url https://gitlab.com/libtiff/libtiff/-/merge_requests/323
reference_id
reference_type
scores
url https://gitlab.com/libtiff/libtiff/-/merge_requests/323
28
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160
reference_id 1011160
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2074415
reference_id 2074415
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2074415
30
reference_url https://security.archlinux.org/AVG-2721
reference_id AVG-2721
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2721
31
reference_url https://access.redhat.com/security/cve/CVE-2022-1355
reference_id CVE-2022-1355
reference_type
scores
url https://access.redhat.com/security/cve/CVE-2022-1355
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-1355
reference_id CVE-2022-1355
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-1355
33
reference_url https://security.gentoo.org/glsa/202210-10
reference_id GLSA-202210-10
reference_type
scores
url https://security.gentoo.org/glsa/202210-10
34
reference_url https://access.redhat.com/errata/RHSA-2022:7585
reference_id RHSA-2022:7585
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:7585
35
reference_url https://access.redhat.com/errata/RHSA-2022:8194
reference_id RHSA-2022:8194
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8194
36
reference_url https://usn.ubuntu.com/5619-1/
reference_id USN-5619-1
reference_type
scores
url https://usn.ubuntu.com/5619-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.3.0-8?distro=trixie
purl pkg:deb/debian/tiff@4.3.0-8?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.3.0-8%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-1355
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ucr1-vp5p-jqck
23
url VCID-vu6r-464p-4ue3
vulnerability_id VCID-vu6r-464p-4ue3
summary 
Out-of-bounds Read
LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json
reference_id
reference_type
scores
0
value 5.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-4645
reference_id
reference_type
scores
0
value 0.00012
scoring_system epss
scoring_elements 0.01862
published_at 2026-04-02T12:55:00Z
1
value 0.00012
scoring_system epss
scoring_elements 0.01916
published_at 2026-04-24T12:55:00Z
2
value 0.00012
scoring_system epss
scoring_elements 0.01874
published_at 2026-04-07T12:55:00Z
3
value 0.00012
scoring_system epss
scoring_elements 0.01877
published_at 2026-04-08T12:55:00Z
4
value 0.00012
scoring_system epss
scoring_elements 0.01891
published_at 2026-04-09T12:55:00Z
5
value 0.00012
scoring_system epss
scoring_elements 0.01876
published_at 2026-04-11T12:55:00Z
6
value 0.00012
scoring_system epss
scoring_elements 0.01861
published_at 2026-04-12T12:55:00Z
7
value 0.00012
scoring_system epss
scoring_elements 0.01856
published_at 2026-04-13T12:55:00Z
8
value 0.00012
scoring_system epss
scoring_elements 0.01839
published_at 2026-04-16T12:55:00Z
9
value 0.00012
scoring_system epss
scoring_elements 0.01837
published_at 2026-04-18T12:55:00Z
10
value 0.00012
scoring_system epss
scoring_elements 0.01921
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-4645
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246
28
reference_url https://gitlab.com/libtiff/libtiff/-/issues/277
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://gitlab.com/libtiff/libtiff/-/issues/277
29
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2176220
reference_id 2176220
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2176220
30
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/
reference_id 2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/
31
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/
reference_id BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-4645
reference_id CVE-2022-4645
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-4645
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json
reference_id CVE-2022-4645.JSON
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json
34
reference_url https://security.netapp.com/advisory/ntap-20230331-0001/
reference_id ntap-20230331-0001
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://security.netapp.com/advisory/ntap-20230331-0001/
35
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/
reference_id OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ
reference_type
scores
0
value 6.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/
36
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
37
reference_url https://access.redhat.com/errata/RHSA-2024:3059
reference_id RHSA-2024:3059
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:3059
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-4645
risk_score 3.0
exploitability 0.5
weighted_severity 6.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vu6r-464p-4ue3
24
url VCID-vzr7-wz88-h7gx
vulnerability_id VCID-vzr7-wz88-h7gx
summary libtiff: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2868.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-2868
reference_id
reference_type
scores
0
value 0.00016
scoring_system epss
scoring_elements 0.03444
published_at 2026-04-24T12:55:00Z
1
value 0.00016
scoring_system epss
scoring_elements 0.03351
published_at 2026-04-13T12:55:00Z
2
value 0.00016
scoring_system epss
scoring_elements 0.03328
published_at 2026-04-16T12:55:00Z
3
value 0.00016
scoring_system epss
scoring_elements 0.0334
published_at 2026-04-18T12:55:00Z
4
value 0.00016
scoring_system epss
scoring_elements 0.03458
published_at 2026-04-21T12:55:00Z
5
value 0.00016
scoring_system epss
scoring_elements 0.03416
published_at 2026-04-07T12:55:00Z
6
value 0.00016
scoring_system epss
scoring_elements 0.03419
published_at 2026-04-08T12:55:00Z
7
value 0.00016
scoring_system epss
scoring_elements 0.03441
published_at 2026-04-09T12:55:00Z
8
value 0.00016
scoring_system epss
scoring_elements 0.03402
published_at 2026-04-11T12:55:00Z
9
value 0.00016
scoring_system epss
scoring_elements 0.03374
published_at 2026-04-12T12:55:00Z
10
value 0.00026
scoring_system epss
scoring_elements 0.07279
published_at 2026-04-02T12:55:00Z
11
value 0.00026
scoring_system epss
scoring_elements 0.07322
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-2868
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2118863
reference_id 2118863
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2118863
28
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
29
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-2868
reference_id CVE-2022-2868
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-2868
30
reference_url https://access.redhat.com/errata/RHSA-2023:0095
reference_id RHSA-2023:0095
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0095
31
reference_url https://usn.ubuntu.com/5604-1/
reference_id USN-5604-1
reference_type
scores
url https://usn.ubuntu.com/5604-1/
32
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-2868
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vzr7-wz88-h7gx
25
url VCID-zwbu-yezc-4yck
vulnerability_id VCID-zwbu-yezc-4yck
summary libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3597.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-3597
reference_id
reference_type
scores
0
value 0.00027
scoring_system epss
scoring_elements 0.07556
published_at 2026-04-07T12:55:00Z
1
value 0.00027
scoring_system epss
scoring_elements 0.07606
published_at 2026-04-13T12:55:00Z
2
value 0.00027
scoring_system epss
scoring_elements 0.0762
published_at 2026-04-12T12:55:00Z
3
value 0.00027
scoring_system epss
scoring_elements 0.07633
published_at 2026-04-11T12:55:00Z
4
value 0.00027
scoring_system epss
scoring_elements 0.07614
published_at 2026-04-08T12:55:00Z
5
value 0.00028
scoring_system epss
scoring_elements 0.08107
published_at 2026-04-24T12:55:00Z
6
value 0.00028
scoring_system epss
scoring_elements 0.08007
published_at 2026-04-16T12:55:00Z
7
value 0.00028
scoring_system epss
scoring_elements 0.07992
published_at 2026-04-18T12:55:00Z
8
value 0.00028
scoring_system epss
scoring_elements 0.0815
published_at 2026-04-21T12:55:00Z
9
value 0.00029
scoring_system epss
scoring_elements 0.08413
published_at 2026-04-04T12:55:00Z
10
value 0.00029
scoring_system epss
scoring_elements 0.0836
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-3597
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1354
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1355
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1622
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1623
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2056
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2057
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2058
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2867
13
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2868
14
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2869
15
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2953
16
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34526
17
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3570
18
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3597
19
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3598
20
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3599
21
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3626
22
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3627
23
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3970
24
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4645
25
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48281
26
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
27
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id 1022555
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
28
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2142736
reference_id 2142736
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2142736
29
reference_url https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047
reference_id 236b7191f04c60d09ee836ae13b50f812c841047
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/
url https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047
30
reference_url https://gitlab.com/libtiff/libtiff/-/issues/413
reference_id 413
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/
url https://gitlab.com/libtiff/libtiff/-/issues/413
31
reference_url https://security.archlinux.org/AVG-2842
reference_id AVG-2842
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2842
32
reference_url https://nvd.nist.gov/vuln/detail/CVE-2022-3597
reference_id CVE-2022-3597
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2022-3597
33
reference_url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json
reference_id CVE-2022-3597.json
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/
url https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json
34
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
reference_id msg00018.html
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
35
reference_url https://security.netapp.com/advisory/ntap-20230110-0001/
reference_id ntap-20230110-0001
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/
url https://security.netapp.com/advisory/ntap-20230110-0001/
36
reference_url https://access.redhat.com/errata/RHSA-2023:2340
reference_id RHSA-2023:2340
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2340
37
reference_url https://usn.ubuntu.com/5714-1/
reference_id USN-5714-1
reference_type
scores
url https://usn.ubuntu.com/5714-1/
fixed_packages
0
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie
1
url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1hfc-b4qr-jqgk
1
vulnerability VCID-38sj-85gt-sfhe
2
vulnerability VCID-4mhv-7vrm-v7hv
3
vulnerability VCID-7zdy-fxq2-p7gf
4
vulnerability VCID-9grz-pkwb-3kc5
5
vulnerability VCID-a8jf-xmj8-cuh6
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-h9ap-xxmw-j7dr
9
vulnerability VCID-ndc5-qn5u-3qbq
10
vulnerability VCID-r186-xqyn-ffey
11
vulnerability VCID-rp7t-x7gz-9udg
12
vulnerability VCID-sqxq-hg7v-d7gv
13
vulnerability VCID-ttb7-w41r-4kfn
14
vulnerability VCID-ukgj-45m7-6uba
15
vulnerability VCID-vju4-pghv-47bx
16
vulnerability VCID-vrtj-45t6-cqec
17
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie
2
url pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie
3
url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u3?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-38sj-85gt-sfhe
1
vulnerability VCID-4mhv-7vrm-v7hv
2
vulnerability VCID-7zdy-fxq2-p7gf
3
vulnerability VCID-9grz-pkwb-3kc5
4
vulnerability VCID-a8jf-xmj8-cuh6
5
vulnerability VCID-b4hb-cxzy-suck
6
vulnerability VCID-d8kh-h6vs-gqd4
7
vulnerability VCID-dg96-zmw1-8kcp
8
vulnerability VCID-ndc5-qn5u-3qbq
9
vulnerability VCID-r186-xqyn-ffey
10
vulnerability VCID-rp7t-x7gz-9udg
11
vulnerability VCID-sqxq-hg7v-d7gv
12
vulnerability VCID-ttb7-w41r-4kfn
13
vulnerability VCID-ukgj-45m7-6uba
14
vulnerability VCID-vju4-pghv-47bx
15
vulnerability VCID-yfxw-tmnn-byc6
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u3%3Fdistro=trixie
4
url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-7zdy-fxq2-p7gf
1
vulnerability VCID-9grz-pkwb-3kc5
2
vulnerability VCID-dg96-zmw1-8kcp
3
vulnerability VCID-r186-xqyn-ffey
4
vulnerability VCID-sqxq-hg7v-d7gv
5
vulnerability VCID-ttb7-w41r-4kfn
6
vulnerability VCID-vju4-pghv-47bx
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u1%3Fdistro=trixie
5
url pkg:deb/debian/tiff@4.7.1-1?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-ttb7-w41r-4kfn
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-1%3Fdistro=trixie
6
url pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie
aliases CVE-2022-3597
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zwbu-yezc-4yck
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie