CVE-2026-4775

HIGH EPSS 42.0%

Published Mar 24, 20263mo ago · Modified Jun 17, 20261w ago

7.8 CVSS 3.1

High

Published Mar 24, 2026 3mo ago

Last Modified Jun 17, 2026 1w ago

Description

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.

CVSS Details

Base Score

7.8

Exploitability

1.8

Impact

5.9

Vector string

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector Local

Attack Complexity Low

Privileges Required None

User Interaction Required

Scope Unchanged

Confidentiality High

Integrity High

Availability High

Threat Intelligence

EPSS Exploit Probability

42.0% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-190 Integer Overflow or Wraparound Numeric Error

Affected Products 8

Vendor	Product	Version	Range
libtiff	libtiff	*	any
redhat	hardened_images	*	any
debian	debian_linux	11.0	any
redhat	enterprise_linux	6.0	any
redhat	enterprise_linux	7.0	any
redhat	enterprise_linux	8.0	any
redhat	enterprise_linux	9.0	any
redhat	enterprise_linux	10.0	any

References 24

access.redhat.com https://access.redhat.com/errata/RHSA-2026:12265
access.redhat.com https://access.redhat.com/errata/RHSA-2026:12271
access.redhat.com https://access.redhat.com/errata/RHSA-2026:14929
access.redhat.com https://access.redhat.com/errata/RHSA-2026:16055
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19150
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19363
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19585
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19586
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19604
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19608
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19609
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19657
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19659
access.redhat.com https://access.redhat.com/errata/RHSA-2026:19702
access.redhat.com https://access.redhat.com/errata/RHSA-2026:20583
access.redhat.com https://access.redhat.com/errata/RHSA-2026:20585
access.redhat.com https://access.redhat.com/errata/RHSA-2026:20591
access.redhat.com https://access.redhat.com/errata/RHSA-2026:20592
access.redhat.com https://access.redhat.com/errata/RHSA-2026:24992
access.redhat.com https://access.redhat.com/errata/RHSA-2026:25096
access.redhat.com https://access.redhat.com/errata/RHSA-2026:25910
access.redhat.com https://access.redhat.com/security/cve/CVE-2026-4775

Third Party Advisory
bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2450768

Issue TrackingThird Party Advisory
lists.debian.org https://lists.debian.org/debian-lts-announce/2026/04/msg00016.html

Mailing ListThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.