Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service (heap-based buffer over-read), or possibly obtain sensitive information from process. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required.
Denial Of Service
Libtiff
NVD
CVSS 3.0
7.4
EPSS
0.7%