Vulnerability Details CVE-2024-48854
Off-by-one error in the TIFF image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause an information disclosure in the context of the process using the image codec.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.4%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2024-48854
-
cpe:2.3:a:blackberry:qnx_software_development_platform:7.0
-
cpe:2.3:a:blackberry:qnx_software_development_platform:7.1
-
cpe:2.3:a:blackberry:qnx_software_development_platform:8.0