Tiff
This hub aggregates every CVE we track for Tiff, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
3
CVEs tracked
0
Critical
1
High
0
In CISA KEV
Severity distribution
MEDIUM2HIGH1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
2024-072026-06
Latest CVEs
The 3 most recently published vulnerabilities affecting Tiff.
- CVE-2026-33809OOM from malicious IFD offset in golang.org/x/image/tiff5.3
- CVE-2022-41727Denial of service via crafted TIFF image in golang.org/x/image/tiff5.5
- CVE-2017-10688In LibTIFF 4.0.8, there is a assertion abort in the TIFFWriteDirectoryTagCheckedLong8Array function in tif_dirwrite.c. A crafted input will lead to a remote denial of service attack.7.5
Product normalization is registry-driven with AI assist and human review. How it works