Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS:LibTIFF 弱點 (USN-5743-2)

high Nessus Plugin ID 168337

版本 1.8

Nov 1, 2023, 1:41 PM

  • CVSS metrics ("CVSSv2 score" changed from 6.8 to 10.0. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 score" changed from 9.8 to 8.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H")
  • CVSSv2 severity (based on CVE-2022-3970, severity increased from "Medium" to "High")

Plugin Feed: 202311011341

版本 1.7

Oct 16, 2023, 7:25 PM

  • Detection
  • Plugin metadata

Plugin Feed: 202310161925

版本 1.6

Sep 20, 2023, 4:09 PM

  • CVSS metrics ("CVSSv2 score" changed from 10.0 to 6.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv3 score" changed from 8.8 to 9.8. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C" to "CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P")
  • CVSSv3 score source (set to "CVE-2022-3970")
  • CVSSv2 severity (based on CVE-2022-3970, severity decreased from "High" to "Medium")

Plugin Feed: 202309201609

版本 1.5

Jul 11, 2023, 4:01 AM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
  • Detection

Plugin Feed: 202307110401

版本 1.4

Jul 11, 2023, 1:48 AM

  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
  • Exploit attributes ("Exploit available" set to "True")
  • Detection

Plugin Feed: 202307110148

版本 1.3

Jan 9, 2023, 4:06 PM

  • CVSS metrics ("CVSSv3 score" changed from "9.8" to "8.8")
  • CVSS metrics ("CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H")
  • CVSSv3 score source (set to "CVE-2022-3970")

Plugin Feed: 202301091606

版本 1.2

Dec 2, 2022, 1:56 PM

  • New

Plugin Feed: 202212021356

* Changelogs are generally available for changes made after Nov 1, 2022