How severe is CVE-2024-48854?

CVE-2024-48854 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2024-48854

Name: qnx_software_development_platform
Author: blackberry

5.3MEDIUM

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image c

公開日: 1/14/2025更新日: 1/21/2025

説明

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.

AI分析AIによる分析

影響を受ける製品

blackberryqnx_software_development_platform

7.0

blackberryqnx_software_development_platform

7.1

blackberryqnx_software_development_platform

8.0

参照

https://support.blackberry.com/pkb/s/article/140334
Vendor Advisory