Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie

Type deb

Namespace debian

Name tiff

Version 4.2.0-1+deb11u3

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 4.2.0-1+deb11u4

Latest_non_vulnerable_version 4.7.1-2

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1amj-dh9t-hybw

vulnerability_id VCID-1amj-dh9t-hybw

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2058

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.25841
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2058

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
reference_id	1014494
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5619-1/
reference_id	USN-5619-1
reference_type
scores
url	https://usn.ubuntu.com/5619-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-3?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2058

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1amj-dh9t-hybw

url VCID-1kc6-kat2-skdx

vulnerability_id VCID-1kc6-kat2-skdx

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3598

reference_id

reference_type

scores

value	0.00041
scoring_system	epss
scoring_elements	0.12898
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3598

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id	1022555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/435

reference_id

435

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/435

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff

reference_id

cfbb883bf6ea7bedcb04177cc4e52d304522fdff

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/cfbb883bf6ea7bedcb04177cc4e52d304522fdff

reference_url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json

reference_id

CVE-2022-3598.json

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/

url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3598.json

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_id

ntap-20230110-0001

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:33:41Z/

url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_url	https://usn.ubuntu.com/5705-1/
reference_id	USN-5705-1
reference_type
scores
url	https://usn.ubuntu.com/5705-1/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3598

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1kc6-kat2-skdx

url VCID-1pch-2u3k-z3at

vulnerability_id VCID-1pch-2u3k-z3at

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3570

reference_id

reference_type

scores

value	7e-05
scoring_system	epss
scoring_elements	0.00661
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3570

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id	1022555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5705-1/
reference_id	USN-5705-1
reference_type
scores
url	https://usn.ubuntu.com/5705-1/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3570

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1pch-2u3k-z3at

url VCID-2891-9w9h-cbhn

vulnerability_id VCID-2891-9w9h-cbhn

summary

Out-of-bounds Read
LibTIFF 4.4.0 has an out-of-bounds read in tiffcp in tools/tiffcp.c:948, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4645.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-4645

reference_id

reference_type

scores

value	0.00012
scoring_system	epss
scoring_elements	0.01987
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-4645

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/277

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/277

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2176220
reference_id	2176220
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2176220

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/

reference_id

2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ZTFA6GGOKFPIQNHDBMXYUR4XUXUJESE/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/

reference_id

BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BA6GRCAQ7NR2OK5N44UQRGUJBIYKWJJH/

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-4645
reference_id	CVE-2022-4645
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-4645

reference_url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json

reference_id

CVE-2022-4645.JSON

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-4645.json

reference_url

https://security.netapp.com/advisory/ntap-20230331-0001/

reference_id

ntap-20230331-0001

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://security.netapp.com/advisory/ntap-20230331-0001/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/

reference_id

OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-05T20:04:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OLM763GGZVVOAXIQXG6YGTYJ5VFYNECQ/

reference_url	https://access.redhat.com/errata/RHSA-2023:2340
reference_id	RHSA-2023:2340
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2340

reference_url	https://access.redhat.com/errata/RHSA-2024:3059
reference_id	RHSA-2024:3059
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3059

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-4645

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2891-9w9h-cbhn

url VCID-2dg7-jt13-syby

vulnerability_id VCID-2dg7-jt13-syby

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-1622

reference_id

reference_type

scores

value	0.00104
scoring_system	epss
scoring_elements	0.28064
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-1622

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a

reference_url	https://gitlab.com/libtiff/libtiff/-/issues/410
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/issues/410

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-1622
reference_id	CVE-2022-1622
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-1622

reference_url	https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json
reference_id	CVE-2022-1622.JSON
reference_type
scores
url	https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1622.json

reference_url	https://security.gentoo.org/glsa/202210-10
reference_id	GLSA-202210-10
reference_type
scores
url	https://security.gentoo.org/glsa/202210-10

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-1622

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2dg7-jt13-syby

url VCID-6bb7-h44a-2bb5

vulnerability_id VCID-6bb7-h44a-2bb5

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2519

reference_id

reference_type

scores

value	0.00124
scoring_system	epss
scoring_elements	0.3128
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2519

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id	1024670
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2519

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6bb7-h44a-2bb5

url VCID-6w4v-u2mf-qkam

vulnerability_id VCID-6w4v-u2mf-qkam

summary

Out-of-bounds Write
A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30774.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-30774

reference_id

reference_type

scores

value	0.00032
scoring_system	epss
scoring_elements	0.09847
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-30774

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2187139
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2187139

reference_url	https://gitlab.com/libtiff/libtiff/-/issues/463
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/issues/463

reference_url	https://access.redhat.com/security/cve/CVE-2023-30774
reference_id	CVE-2023-30774
reference_type
scores
url	https://access.redhat.com/security/cve/CVE-2023-30774

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-30774
reference_id	CVE-2023-30774
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-30774

reference_url	https://access.redhat.com/errata/RHSA-2023:2340
reference_id	RHSA-2023:2340
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2340

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2023-30774

risk_score 2.8

exploitability 0.5

weighted_severity 5.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6w4v-u2mf-qkam

url VCID-91zq-kkpc-fqht

vulnerability_id VCID-91zq-kkpc-fqht

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3597

reference_id

reference_type

scores

value	0.00028
scoring_system	epss
scoring_elements	0.08699
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3597

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id	1022555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047

reference_id

236b7191f04c60d09ee836ae13b50f812c841047

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/413

reference_id

413

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/413

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json

reference_id

CVE-2022-3597.json

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/

url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3597.json

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_id

ntap-20230110-0001

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:48:53Z/

url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3597

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-91zq-kkpc-fqht

url VCID-9hgu-ftas-4qby

vulnerability_id VCID-9hgu-ftas-4qby

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2869

reference_id

reference_type

scores

value	0.00025
scoring_system	epss
scoring_elements	0.07468
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2869

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5604-1/
reference_id	USN-5604-1
reference_type
scores
url	https://usn.ubuntu.com/5604-1/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2869

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9hgu-ftas-4qby

url VCID-a9mj-36j1-fqcx

vulnerability_id VCID-a9mj-36j1-fqcx

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2057

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.25841
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2057

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
reference_id	1014494
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5619-1/
reference_id	USN-5619-1
reference_type
scores
url	https://usn.ubuntu.com/5619-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-3?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2057

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a9mj-36j1-fqcx

url VCID-c3c6-1hqy-xybt

vulnerability_id VCID-c3c6-1hqy-xybt

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2520

reference_id

reference_type

scores

value	0.00058
scoring_system	epss
scoring_elements	0.18256
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2520

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id	1024670
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2520

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c3c6-1hqy-xybt

url VCID-cja2-1vd5-9uaf

vulnerability_id VCID-cja2-1vd5-9uaf

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3626

reference_id

reference_type

scores

value	0.00039
scoring_system	epss
scoring_elements	0.11948
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3626

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id	1022555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047

reference_id

236b7191f04c60d09ee836ae13b50f812c841047

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/426

reference_id

426

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/426

reference_url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json

reference_id

CVE-2022-3626.json

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/

url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3626.json

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_id

ntap-20230110-0001

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T15:00:37Z/

url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3626

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cja2-1vd5-9uaf

url VCID-eay9-pecj-bqcs

vulnerability_id VCID-eay9-pecj-bqcs

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-34526

reference_id

reference_type

scores

value	0.00171
scoring_system	epss
scoring_elements	0.38084
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-34526

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-4?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-34526

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eay9-pecj-bqcs

url VCID-f7at-79hc-6fbg

vulnerability_id VCID-f7at-79hc-6fbg

summary

Out-of-bounds Write
Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.

references

reference_url

http://libtiff-release-v4-0-7.com

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/

url

http://libtiff-release-v4-0-7.com

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-30086.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-30086

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22487
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-30086

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/538

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/538

reference_url

http://tiffcp.com

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/

url

http://tiffcp.com

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2203650
reference_id	2203650
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2203650

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2023-30086
reference_id	CVE-2023-30086
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2023-30086

reference_url

https://security.netapp.com/advisory/ntap-20230616-0003/

reference_id

ntap-20230616-0003

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-29T14:42:43Z/

url

https://security.netapp.com/advisory/ntap-20230616-0003/

reference_url	https://access.redhat.com/errata/RHSA-2023:2340
reference_id	RHSA-2023:2340
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2340

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2023-30086

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f7at-79hc-6fbg

url VCID-h8u3-7q1s-myb3

vulnerability_id VCID-h8u3-7q1s-myb3

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2867

reference_id

reference_type

scores

value	0.00016
scoring_system	epss
scoring_elements	0.0382
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2867

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5604-1/
reference_id	USN-5604-1
reference_type
scores
url	https://usn.ubuntu.com/5604-1/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2867

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h8u3-7q1s-myb3

url VCID-qa5r-fkvn-s3cw

vulnerability_id VCID-qa5r-fkvn-s3cw

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3970.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3970

reference_id

reference_type

scores

value	0.00116
scoring_system	epss
scoring_elements	0.30061
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3970

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737
reference_id	1024737
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024737

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2148918
reference_id	2148918
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2148918

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be

reference_id

227500897dfb07fb7d27f7aa570050e62617e3be

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137

reference_id

detail?id=53137

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137

reference_url

https://oss-fuzz.com/download?testcase_id=5738253143900160

reference_id

download?testcase_id=5738253143900160

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://oss-fuzz.com/download?testcase_id=5738253143900160

reference_url

https://support.apple.com/kb/HT213841

reference_id

HT213841

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://support.apple.com/kb/HT213841

reference_url

https://support.apple.com/kb/HT213843

reference_id

HT213843

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://support.apple.com/kb/HT213843

reference_url

https://vuldb.com/?id.213549

reference_id

?id.213549

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://vuldb.com/?id.213549

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_url

https://security.netapp.com/advisory/ntap-20221215-0009/

reference_id

ntap-20221215-0009

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T16:57:45Z/

url

https://security.netapp.com/advisory/ntap-20221215-0009/

reference_url	https://access.redhat.com/errata/RHSA-2023:2340
reference_id	RHSA-2023:2340
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2340

reference_url	https://access.redhat.com/errata/RHSA-2023:2883
reference_id	RHSA-2023:2883
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2883

reference_url	https://usn.ubuntu.com/5743-1/
reference_id	USN-5743-1
reference_type
scores
url	https://usn.ubuntu.com/5743-1/

reference_url	https://usn.ubuntu.com/5743-2/
reference_id	USN-5743-2
reference_type
scores
url	https://usn.ubuntu.com/5743-2/

reference_url	https://usn.ubuntu.com/5841-1/
reference_id	USN-5841-1
reference_type
scores
url	https://usn.ubuntu.com/5841-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3970

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qa5r-fkvn-s3cw

url VCID-r86q-4y35-c7ef

vulnerability_id VCID-r86q-4y35-c7ef

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-1354

reference_id

reference_type

scores

value	0.00057
scoring_system	epss
scoring_elements	0.18096
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-1354

reference_url

https://security.archlinux.org/AVG-2721

reference_id

AVG-2721

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2721

reference_url	https://security.gentoo.org/glsa/202210-10
reference_id	GLSA-202210-10
reference_type
scores
url	https://security.gentoo.org/glsa/202210-10

reference_url	https://usn.ubuntu.com/5619-1/
reference_id	USN-5619-1
reference_type
scores
url	https://usn.ubuntu.com/5619-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.3.0-7?distro=trixie
purl	pkg:deb/debian/tiff@4.3.0-7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.3.0-7%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-1354

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r86q-4y35-c7ef

url VCID-rvec-n9b1-jqcr

vulnerability_id VCID-rvec-n9b1-jqcr

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3599

reference_id

reference_type

scores

value	0.00039
scoring_system	epss
scoring_elements	0.11916
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3599

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id	1022555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/398

reference_id

398

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/398

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json

reference_id

CVE-2022-3599.json

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/

url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3599.json

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_id

ntap-20230110-0001

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T20:34:19Z/

url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3599

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rvec-n9b1-jqcr

url VCID-s5u9-91un-pygc

vulnerability_id VCID-s5u9-91un-pygc

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-1623

reference_id

reference_type

scores

value	0.00332
scoring_system	epss
scoring_elements	0.56322
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-1623

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a

reference_url	https://gitlab.com/libtiff/libtiff/-/issues/410
reference_id
reference_type
scores
url	https://gitlab.com/libtiff/libtiff/-/issues/410

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-1623
reference_id	CVE-2022-1623
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-1623

reference_url	https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json
reference_id	CVE-2022-1623.JSON
reference_type
scores
url	https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json

reference_url	https://security.gentoo.org/glsa/202210-10
reference_id	GLSA-202210-10
reference_type
scores
url	https://security.gentoo.org/glsa/202210-10

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-1623

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s5u9-91un-pygc

url VCID-sw44-wdhr-nfc4

vulnerability_id VCID-sw44-wdhr-nfc4

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2953

reference_id

reference_type

scores

value	0.00018
scoring_system	epss
scoring_elements	0.04782
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2953

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id	1024670
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2953

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sw44-wdhr-nfc4

url VCID-tauc-bnmm-r3ax

vulnerability_id VCID-tauc-bnmm-r3ax

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2868

reference_id

reference_type

scores

value	0.00016
scoring_system	epss
scoring_elements	0.03703
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2868

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5604-1/
reference_id	USN-5604-1
reference_type
scores
url	https://usn.ubuntu.com/5604-1/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0~rc1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0~rc1-1%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2868

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tauc-bnmm-r3ax

url VCID-u72g-hj1c-f3hh

vulnerability_id VCID-u72g-hj1c-f3hh

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2056

reference_id

reference_type

scores

value	0.00092
scoring_system	epss
scoring_elements	0.25841
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2056

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494
reference_id	1014494
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014494

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5619-1/
reference_id	USN-5619-1
reference_type
scores
url	https://usn.ubuntu.com/5619-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-3?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2056

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u72g-hj1c-f3hh

url VCID-vvv8-m8fq-7kf1

vulnerability_id VCID-vvv8-m8fq-7kf1

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-3627

reference_id

reference_type

scores

value	0.00028
scoring_system	epss
scoring_elements	0.08699
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-3627

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555
reference_id	1022555
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1022555

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047

reference_id

236b7191f04c60d09ee836ae13b50f812c841047

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/236b7191f04c60d09ee836ae13b50f812c841047

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/411

reference_id

411

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/411

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json

reference_id

CVE-2022-3627.json

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/

url

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-3627.json

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_id

msg00018.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html

reference_url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_id

ntap-20230110-0001

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-07T14:56:43Z/

url

https://security.netapp.com/advisory/ntap-20230110-0001/

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-5%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-3627

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vvv8-m8fq-7kf1

url VCID-wgef-fqmh-abcg

vulnerability_id VCID-wgef-fqmh-abcg

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2521

reference_id

reference_type

scores

value	0.00124
scoring_system	epss
scoring_elements	0.3128
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2521

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670
reference_id	1024670
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1024670

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://usn.ubuntu.com/5714-1/
reference_id	USN-5714-1
reference_type
scores
url	https://usn.ubuntu.com/5714-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
purl	pkg:deb/debian/tiff@4.4.0-6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.4.0-6%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-2521

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wgef-fqmh-abcg

url VCID-wvx6-pp15-4fcu

vulnerability_id VCID-wvx6-pp15-4fcu

summary denial of service

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-1355

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.2235
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-1355

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160
reference_id	1011160
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011160

reference_url

https://security.archlinux.org/AVG-2721

reference_id

AVG-2721

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2721

reference_url	https://security.gentoo.org/glsa/202210-10
reference_id	GLSA-202210-10
reference_type
scores
url	https://security.gentoo.org/glsa/202210-10

reference_url	https://usn.ubuntu.com/5619-1/
reference_id	USN-5619-1
reference_type
scores
url	https://usn.ubuntu.com/5619-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.3.0-8?distro=trixie
purl	pkg:deb/debian/tiff@4.3.0-8?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.3.0-8%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-1355

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wvx6-pp15-4fcu

url VCID-yma2-qbh4-t7eh

vulnerability_id VCID-yma2-qbh4-t7eh

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48281.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-48281

reference_id

reference_type

scores

value	0.00011
scoring_system	epss
scoring_elements	0.01358
published_at	2026-05-30T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-48281

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/

url

https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5

reference_url

https://gitlab.com/libtiff/libtiff/-/issues/488

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/

url

https://gitlab.com/libtiff/libtiff/-/issues/488

reference_url

https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/

url

https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html

reference_url

https://www.debian.org/security/2023/dsa-5333

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/

url

https://www.debian.org/security/2023/dsa-5333

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653
reference_id	1029653
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029653

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2163606
reference_id	2163606
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2163606

reference_url

https://security.archlinux.org/AVG-2842

reference_id

AVG-2842

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2842

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2022-48281
reference_id	CVE-2022-48281
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2022-48281

reference_url

https://security.gentoo.org/glsa/202305-31

reference_id

GLSA-202305-31

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/

url

https://security.gentoo.org/glsa/202305-31

reference_url

https://security.netapp.com/advisory/ntap-20230302-0004/

reference_id

ntap-20230302-0004

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T14:03:44Z/

url

https://security.netapp.com/advisory/ntap-20230302-0004/

reference_url	https://access.redhat.com/errata/RHSA-2023:3711
reference_id	RHSA-2023:3711
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3711

reference_url	https://access.redhat.com/errata/RHSA-2023:3827
reference_id	RHSA-2023:3827
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3827

reference_url	https://usn.ubuntu.com/5841-1/
reference_id	USN-5841-1
reference_type
scores
url	https://usn.ubuntu.com/5841-1/

reference_url	https://usn.ubuntu.com/6290-1/
reference_id	USN-6290-1
reference_type
scores
url	https://usn.ubuntu.com/6290-1/

fixed_packages

url	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
purl	pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

url pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

purl pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-67bq-3nun-13h5

vulnerability	VCID-8tzv-mjup-uuc5

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-ja4n-emaj-dqe7

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.5.0-4?distro=trixie
purl	pkg:deb/debian/tiff@4.5.0-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

purl pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-aa9u-26t2-rfgq

vulnerability	VCID-av49-wvw1-fuaz

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-dvc1-um85-nfc7

vulnerability	VCID-hcxv-nkg8-ubcb

vulnerability	VCID-kqz2-m8w6-1qdx

vulnerability	VCID-nhqk-a8x6-r7c3

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-tzmh-d1vr-byhd

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-xbxu-qzb3-rbex

vulnerability	VCID-yr8u-at1r-z3c6

vulnerability	VCID-yy9z-sunm-pfbc

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

purl pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2h89-hvrb-nfe1

vulnerability	VCID-8v4r-gkdt-7ube

vulnerability	VCID-ay7j-3cd3-t7du

vulnerability	VCID-s9ey-jmuc-cyfh

vulnerability	VCID-w25w-4h7m-w7a4

vulnerability	VCID-yr8u-at1r-z3c6

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie

url	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
purl	pkg:deb/debian/tiff@4.7.1-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie

aliases CVE-2022-48281

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yma2-qbh4-t7eh

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u3%3Fdistro=trixie

Package Instance