{"uuid": "dee090fe-d2b2-421b-abf2-18df64ebf8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-48281", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10234", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-48281\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., \"WRITE of size 307203\") via a crafted TIFF image.\n\ud83d\udccf Published: 2023-01-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T14:04:15.193Z\n\ud83d\udd17 References:\n1. https://gitlab.com/libtiff/libtiff/-/issues/488\n2. https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5\n3. https://www.debian.org/security/2023/dsa-5333\n4. https://lists.debian.org/debian-lts-announce/2023/01/msg00037.html\n5. https://security.netapp.com/advisory/ntap-20230302-0004/\n6. https://security.gentoo.org/glsa/202305-31", "creation_timestamp": "2025-04-03T14:35:23.000000Z"}