CVE-2022-1210

Description

A vulnerability classified as problematic was found in LibTIFF 4.3.0. Affected by this vulnerability is the TIFF File Handler of tiff2ps. Opening a malicious file leads to a denial of service. The attack can be launched remotely but requires user interaction. The exploit has been disclosed to the public and may be used.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Affected products

unspecified / LibTIFF4.3.0 – 4.3.0

References

MISChttps://gitlab.com/libtiff/libtiff/-/issues/402
MISChttps://gitlab.com/libtiff/libtiff/uploads/c3da94e53cf1e1e8e6d4d3780dc8c42f/example.tiff
MISChttps://vuldb.com/?id.196363
MISChttps://security.netapp.com/advisory/ntap-20220513-0005/
MISChttps://security.gentoo.org/glsa/202210-10