CVE-2025-61145

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libtiff versions up to 4.7.1

Description The libtiff software contains a double free issue within the tools/tiffcrop.c component. This condition can be triggered, potentially leading to a denial-of-service or other unexpected behavior.

Recommendations Update to a version of libtiff newer than 4.7.1.

Exploit

Fix

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

AZL-78314

AZL-78333

CVE-2025-61145

ECHO-400A-DE0A-4538

OESA-2026-1441

OESA-2026-1442

RHSA-2026:7504

Affected Products

Libtiff

CVE-2025-61145

Weakness Enumeration

Related Identifiers

Affected Products

References · 27