CVE-2019-14973

EPSS 0.97% · P77 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-14973

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Silicon Graphics LibTIFF 输入验证错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Silicon Graphics LibTIFF是美国Silicon Graphics公司的一个读写TIFF（标签图像文件格式）文件的库。该库包含一些处理TIFF文件的命令行工具。 LibTIFF 4.0.10及之前版本中的tif_aux.c文件的‘_TIFFCheckMalloc’和‘_TIFFCheckRealloc’函数存在输入验证错误漏洞。该漏洞源于网络系统或产品未对输入的数据进行正确的验证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2019-14973

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-14973

请登录查看更多情报信息。

http://packetstormsecurity.com/files/155095/Slackware-Security-Advisory-libtiff-Updates.htmlx_refsource_MISC
https://gitlab.com/libtiff/libtiff/merge_requests/90x_refsource_CONFIRM
https://www.debian.org/security/2020/dsa-4608vendor-advisoryx_refsource_DEBIAN
https://www.debian.org/security/2020/dsa-4670vendor-advisoryx_refsource_DEBIAN
http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00102.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00023.htmlvendor-advisoryx_refsource_SUSE
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ADNPG7JJTRRK22GUVTAFH3GJ6WGKUZJB/vendor-advisoryx_refsource_FEDORA
https://seclists.org/bugtraq/2020/Jan/32mailing-listx_refsource_BUGTRAQ
https://seclists.org/bugtraq/2019/Nov/5mailing-listx_refsource_BUGTRAQ
https://lists.debian.org/debian-lts-announce/2019/08/msg00031.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2019-14973

Same Patch Batch · n/a · 2019-08-14 · 58 CVEs total

CVE-2019-15047		Bento4 缓冲区错误漏洞
CVE-2017-18514		WordPress simple-login-log插件SQL注入漏洞
CVE-2019-14975		Artifex Software MuPDF 缓冲区错误漏洞
CVE-2017-18515		WordPress wp-statistics插件SQL注入漏洞
CVE-2015-9316		WordPress wp-fastest-cache插件SQL注入漏洞
CVE-2019-15027		MediaTek Embedded Multimedia Card子系统命令注入漏洞
CVE-2015-9311		WordPress newstatpress插件跨站脚本漏洞
CVE-2019-15050		Bento4 缓冲区错误漏洞
CVE-2019-15049		Bento4 缓冲区错误漏洞
CVE-2019-15048		Bento4 缓冲区错误漏洞
CVE-2015-9312		WordPress newstatpress插件跨站脚本漏洞
CVE-2015-9310		WordPress all-in-one-wp-security-and-firewall插件SQL注入漏洞
CVE-2016-10888		WordPress all-in-one-wp-security-and-firewall插件SQL注入漏洞
CVE-2016-10887		WordPress all-in-one-wp-security-and-firewall插件SQL注入漏洞
CVE-2018-20968		WordPress wp-ultimate-exporter插件跨站请求伪造漏洞
CVE-2018-20967		WordPress wp-ultimate-csv-importer插件跨站请求伪造漏洞
CVE-2015-9309		WordPress wp-google-map-plugin插件跨站请求伪造漏洞
CVE-2015-9308		WordPress wp-google-map-plugin插件跨站请求伪造漏洞
CVE-2015-9307		WordPress wp-google-map-plugin插件跨站请求伪造漏洞
CVE-2016-10886		WordPress wp-editor插件权限许可和访问控制问题漏洞

Showing top 20 of 58 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2019-14973

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2019-14973

I. Basic Information for CVE-2019-14973

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-14973

III. Intelligence Information for CVE-2019-14973

Same Patch Batch · n/a · 2019-08-14 · 58 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2019-14973

Leave a comment