LibTIFF tiffcrop tiffcrop.c mai memory corruption_CVE-2025-8961

4.8 / 10

MEDIUM

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

Basic Information

ID CVE-2025-8961

Source VulDB

Published Aug 14, 2025 at 12:02

Affected Product

Vendor n/a

Product LibTIFF

Version 4.7.0

Affected Versions n/a LibTIFF 4.7.0

CWE Classification

CWE-119

References

{
    "lastseen": "",
    "description": "A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.",
    "published": "2025-08-14T12:02:08.516Z",
    "modified": "2025-08-14T12:02:08.516Z",
    "type": "cve",
    "title": "LibTIFF tiffcrop tiffcrop.c mai memory corruption",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.319955\nhttps://vuldb.com/?ctiid.319955\nhttps://vuldb.com/?submit.627957\nhttps://gitlab.com/libtiff/libtiff/-/issues/721\nhttps://gitlab.com/libtiff/libtiff/-/issues/721#note_2670686960\nhttps://drive.google.com/file/d/15L4q2eD8GX3Aj3z6SWC3_FbqaM1ChUx2/view?usp=sharing\nhttp://www.libtiff.org/",
    "id": "CVE-2025-8961",
    "bulletinFamily": "",
    "cwe": [
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "n/a LibTIFF 4.7.0",
    "sourceHref": "",
    "cvss": {
        "score": 4.8,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "LibTIFF",
    "version": "4.7.0",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}