Security Bulletin: Vulnerabilities in kernel affects IBM Netezza Appliance
Details
CVSS v3
8.8
NVD published
2025-09-23 17:15:38
EPSS
<0.1% probability · 12.1th percentile — 2026-04-22
Affected versions
Not available in our cache.
Summary
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file.
By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.