Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

imagemagick imagemagick 7.0.8-13 vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3
CVE-2018-18024
In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.
Imagemagick Imagemagick 7.0.8-13
6.5
CVSSv3
CVE-2018-18023
In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGStripString function of coders/svg.c, which allows malicious users to cause a denial of service via a crafted SVG image file.
Imagemagick Imagemagick 7.0.8-13
6.5
CVSSv3
CVE-2018-18025
In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the EncodeImage function of coders/pict.c, which allows malicious users to cause a denial of service via a crafted SVG image file.
Imagemagick Imagemagick 7.0.8-13Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2018-18544
There is a memory leak in the function WriteMSLImage of coders/msl.c in ImageMagick 7.0.8-13 Q16, and the function ProcessMSLScript of coders/msl.c in GraphicsMagick prior to 1.3.31.
Imagemagick Imagemagick 7.0.8-13Graphicsmagick GraphicsmagickOpensuse Leap 15.0
9.8
CVSSv3
CVE-2017-13139
In ImageMagick prior to 6.9.9-0 and 7.x prior to 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
Imagemagick Imagemagick 7.0.5-2Imagemagick Imagemagick 7.0.5-3Imagemagick Imagemagick 7.0.4-0Imagemagick Imagemagick 7.0.4-1Imagemagick Imagemagick 7.0.4-8Imagemagick Imagemagick 7.0.4-9Imagemagick Imagemagick 7.0.3-6Imagemagick Imagemagick 7.0.3-7Imagemagick Imagemagick 7.0.2-3Imagemagick Imagemagick 7.0.2-4Imagemagick Imagemagick 7.0.0-0Imagemagick Imagemagick 7.0.1-0Imagemagick Imagemagick 7.0.1-1Imagemagick Imagemagick 7.0.1-8Imagemagick Imagemagick 7.0.1-9Imagemagick Imagemagick 7.0.6-0Imagemagick Imagemagick 7.0.5-6Imagemagick Imagemagick 7.0.5-7Imagemagick Imagemagick 7.0.4-4Imagemagick Imagemagick 7.0.4-5Imagemagick Imagemagick 7.0.3-2Imagemagick Imagemagick 7.0.3-3
8.8
CVSSv3
CVE-2019-17541
ImageMagick prior to 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2018-16328
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2018-15607
In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36 0x36 0x36 0x36 0x36 0x1f 0x35 0x50 0x00 can result in a hang of several minutes during which CPU and memory resources are consumed until ultimately an attempted large memory allocatio...
Imagemagick Imagemagick 7.0.8-11
6.5
CVSSv3
CVE-2017-11166
The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.
Imagemagick Imagemagick 7.0.5-6
7.5
CVSSv3
CVE-2017-12805
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function ReadTIFFImage, which allows malicious users to cause a denial of service.
Imagemagick Imagemagick 7.0.6-6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook