CVSS 3.1 Score 5.5 of 10 (medium)


Published Oct 4, 2023
Updated: Mar 11, 2024
CWE ID 119
CWE ID 401


CVE-2023-3576 is a memory leak vulnerability found in Libtiff's tiffcrop utility. This vulnerability affects multiple products, including aT5gho, aT5ghp, aT5ghq, and others. An attacker can exploit this flaw by passing a crafted TIFF image file to the tiffcrop utility, causing a memory leak issue and resulting in an application crash. This vulnerability poses a potential danger to organizations as it can lead to a denial of service. The base severity of this vulnerability is rated as MEDIUM with a base score of 5.5, and the exploitability score is 1.8. Remediation for this vulnerability may involve updating or patching the affected products to address the memory leak issue.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-3576 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options