CVE-2022-3970— LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-3970
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 227500897dfb07fb7d27f7aa570050e62617e3be. It is recommended to apply a patch to fix this issue. The identifier VDB-213549 was assigned to this vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
数值错误
Source: NVD (National Vulnerability Database)
Vulnerability Title
LibTIFF 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
LibTIFF是一个读写TIFF(标签图像文件格式)文件的库。该库包含一些处理TIFF文件的命令行工具。 LibTIFF 存在安全漏洞,该漏洞源于libtiff/tif_getimage.c 文件的函数 TIFFReadRGBATileExt未知功能,攻击者利用该漏洞可以导致整数溢出。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| unspecified | LibTIFF | n/a | - |
II. Public POCs for CVE-2022-3970
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-3970
请登录查看更多情报信息。
Same Patch Batch · unspecified · 2022-11-13 · 9 CVEs total
| CVE-2022-3967 | 5.3 MEDIUM | Vesta Control Panel sed main.sh argument injection |
| CVE-2022-3971 | 4.6 MEDIUM | matrix-appservice-irc PgDataStore.ts sql injection |
| CVE-2022-3965 | 4.3 MEDIUM | ffmpeg QuickTime Graphics Video Encoder smcenc.c smc_encode_stream out-of-bounds |
| CVE-2022-3964 | 4.3 MEDIUM | ffmpeg QuickTime RPZA Video Encoder rpzaenc.c out-of-bounds |
| CVE-2022-3966 | 4.3 MEDIUM | Ultimate Member Plugin Template class-shortcodes.php load_template pathname traversal |
| CVE-2022-3978 | 4.3 MEDIUM | NodeBB abort cross-site request forgery |
| CVE-2022-3968 | 3.5 LOW | emlog article_save.php cross site scripting |
| CVE-2022-3969 | 2.6 LOW | OpenKM FileUtils.java getFileExtension temp file |
IV. Related Vulnerabilities
Same product: LibTIFF
- CVE-2025-9165
LibTIFF tiffcmp tiffcmp.c InitCCITTFax3 memory leak - CVE-2025-8961
LibTIFF tiffcrop tiffcrop.c main memory corruption - CVE-2025-8851
LibTIFF tiffcrop tiffcrop.c readSeparateStripsetoBuffer stac - CVE-2025-8534
libtiff tiff2ps tiff2ps.c PS_Lvl2page null pointer dereferen - CVE-2024-13978
LibTIFF fax2ps tiff2pdf.c t2p_read_tiff_init null pointer de
V. Comments for CVE-2022-3970
No comments yet