Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick 7.0.8-11 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-16413
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function.
Imagemagick Imagemagick 7.0.8-11
7.1
CVSSv2
CVE-2018-15607
In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36 0x36 0x36 0x36 0x36 0x1f 0x35 0x50 0x00 can result in a hang of several minutes during which CPU and memory resources are consumed until ultimately an attempted large memory allocatio...
Imagemagick Imagemagick 7.0.8-11
6.8
CVSSv2
CVE-2018-16412
ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the coders/psd.c ParseImageResourceBlocks function.
Imagemagick Imagemagick 7.0.8-11
Opensuse Leap 15.0
4.3
CVSSv2
CVE-2018-16644
There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-11, which allows remote malicious users to cause a denial of service via a crafted image.
Imagemagick Imagemagick 7.0.8-11
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
4.3
CVSSv2
CVE-2018-16645
There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote malicious users to cause a denial of service via a crafted image file.
Imagemagick Imagemagick 7.0.8-11
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 8.0
Canonical Ubuntu Linux 16.04
7.5
CVSSv2
CVE-2017-13139
In ImageMagick prior to 6.9.9-0 and 7.x prior to 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
Imagemagick Imagemagick 7.0.5-2
Imagemagick Imagemagick 7.0.5-3
Imagemagick Imagemagick 7.0.4-0
Imagemagick Imagemagick 7.0.4-1
Imagemagick Imagemagick 7.0.4-8
Imagemagick Imagemagick 7.0.4-9
Imagemagick Imagemagick 7.0.3-6
Imagemagick Imagemagick 7.0.3-7
Imagemagick Imagemagick 7.0.2-3
Imagemagick Imagemagick 7.0.2-4
Imagemagick Imagemagick 7.0.0-0
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-8
Imagemagick Imagemagick 7.0.1-9
Imagemagick Imagemagick 7.0.6-0
Imagemagick Imagemagick 7.0.5-6
Imagemagick Imagemagick 7.0.5-7
Imagemagick Imagemagick 7.0.4-4
Imagemagick Imagemagick 7.0.4-5
Imagemagick Imagemagick 7.0.3-2
Imagemagick Imagemagick 7.0.3-3
6.8
CVSSv2
CVE-2019-17541
ImageMagick prior to 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.
Imagemagick Imagemagick
1 Github repository
7.5
CVSSv2
CVE-2018-16328
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Imagemagick Imagemagick
7.1
CVSSv2
CVE-2019-11470
The cineon parsing component in ImageMagick 7.0.8-26 Q16 allows malicious users to cause a denial-of-service (uncontrolled resource consumption) by crafting a Cineon image with an incorrect claimed image size. This occurs because ReadCINImage in coders/cin.c lacks a check for ins...
Imagemagick Imagemagick 7.0.8-26
4.3
CVSSv2
CVE-2019-11472
ReadXWDImage in coders/xwd.c in the XWD image parsing component of ImageMagick 7.0.8-41 Q16 allows malicious users to cause a denial-of-service (divide-by-zero error) by crafting an XWD image file in which the header indicates neither LSB first nor MSB first.
Imagemagick Imagemagick 7.0.8-41
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »