Libtiff CVEs & Vulnerabilities
3 CVEs affecting Libtiff products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
libtiff 3
CVE-2025-61145MEDIUMpoc
libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c.
23 Feb 2026
5.0
CVSS
CVE-2025-61144HIGH
libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.
23 Feb 2026
7.3
CVSS
CVE-2025-61143MEDIUM
libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.
23 Feb 2026
5.5
CVSS
← PrevPage 1 / 1Next →