CVE-2025-8961 MEDIUM

CVE-2025-8961: LibTIFF tiffcrop tiffcrop.c main memory corruption

Vendor N/A
Product LibTIFF
Weakness CWE-119
Published August 14, 2025
Last update August 23, 2025

CVSS base score

4.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component tiffcrop. Executing manipulation can lead to memory corruption. The attack can only be executed locally. The exploit has been made available to the public and could be exploited.

Key dates

02Disclosure timeline

August 14, 2025 CVE published
August 23, 2025 Record updated