How severe is CVE-2024-48854?

CVE-2024-48854 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2024-48854

Name: qnx_software_development_platform
Author: blackberry

5.3MEDIUM

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image c

Опубликовано: 1/14/2025Обновлено: 1/21/2025

Описание

Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.

ИИ-АнализНа базе ИИ

Затронутые продукты

blackberryqnx_software_development_platform

7.0

blackberryqnx_software_development_platform

7.1

blackberryqnx_software_development_platform

8.0

Ссылки

https://support.blackberry.com/pkb/s/article/140334
Vendor Advisory