CVEFinder.io

CVE-2026-4775

⚠ī¸ high
🔍 Scan for this CVE
Summary

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.

CVSS Score
7.8
High
EPSS Score
0.3
Exploit Probability
Published Date
2026-03-24
First Seen: 2026-03-25
📊 Relative Risk Intelligence

This CVE is Moderate Risk - more severe than 69.6% of all 328,009 vulnerabilities in our database.

#99,625
Above average severity
Severity Percentile
đŸŽ¯ CISA SSVC Assessment Updated: Mar 24, 2026
🔍 Exploitation Status
None
No known exploits
⚙ī¸ Automatable
NO
Requires human interaction
đŸ’Ĩ Technical Impact
Total
Complete system compromise possible
🏆 Discovered By
Red Hat would like to thank PrymEvol and Quang Luong for reporting this issue.
SSVC data provided by CISA
Last Modified 2026-06-15
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE IDs (Weakness Types)
CWE-190

đŸ“Ļ Affected Products 7

Vendor Product Status Affected Versions
debian debian_linux Affected
v11.0
libtiff libtiff Affected
v-
redhat enterprise_linux Affected
v10.0
redhat enterprise_linux Affected
v6.0
redhat enterprise_linux Affected
v7.0
redhat enterprise_linux Affected
v8.0
redhat enterprise_linux Affected
v9.0

🔗 References 24

https://access.redhat.com/errata/RHSA-2026:12265
https://access.redhat.com/errata/RHSA-2026:12271
https://access.redhat.com/errata/RHSA-2026:14929
https://access.redhat.com/errata/RHSA-2026:16055
https://access.redhat.com/errata/RHSA-2026:19150
https://access.redhat.com/errata/RHSA-2026:19363
https://access.redhat.com/errata/RHSA-2026:19585
https://access.redhat.com/errata/RHSA-2026:19586
https://access.redhat.com/errata/RHSA-2026:19604
https://access.redhat.com/errata/RHSA-2026:19608
https://access.redhat.com/errata/RHSA-2026:19609
https://access.redhat.com/errata/RHSA-2026:19657
https://access.redhat.com/errata/RHSA-2026:19659
https://access.redhat.com/errata/RHSA-2026:19702
https://access.redhat.com/errata/RHSA-2026:20583
https://access.redhat.com/errata/RHSA-2026:20585
https://access.redhat.com/errata/RHSA-2026:20591
https://access.redhat.com/errata/RHSA-2026:20592
https://access.redhat.com/errata/RHSA-2026:24992
https://access.redhat.com/errata/RHSA-2026:25096
https://access.redhat.com/errata/RHSA-2026:25910
https://access.redhat.com/security/cve/CVE-2026-4775
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2450768
Issue Tracking Third Party Advisory
https://lists.debian.org/debian-lts-announce/2026/04...
Mailing List Third Party Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-1766 đŸ”ļ medium 5.6 0.2 A flaw was found in GNOME localsearch (previously known as tracker-miners) MP3 Extractor, specifically within the tracke... 2026-06-16
CVE-2026-1767 đŸ”ļ medium 5.6 0.2 A flaw was found in the GNOME localsearch (previously known as tracker-miners) MP3 Extractor `tracker-extract-mp3` compo... 2026-06-16
CVE-2026-11785 đŸ”ļ medium 4.3 0.2 A flaw was found in 389 Directory Server. A type confusion in the SSO token extended operation handler causes partial st... 2026-06-09
CVE-2026-11786 ℹī¸ low 1.9 0.2 A flaw was found in 389 Directory Server. The LDIF parser reads past the end of a heap buffer when processing attribute ... 2026-06-09
CVE-2026-11787 đŸ”ļ medium 5.0 0.2 A flaw was found in 389 Directory Server. The ldap_utf8prev() function reads bytes before the start of a buffer without ... 2026-06-09
CVE-2026-11788 đŸ”ļ medium 5.9 0.4 A flaw was found in 389 Directory Server. The dereference control plugin does not check for allocation failure before us... 2026-06-09
These CVEs affect the same products