Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick 7.0.6-8 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-14224
A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ImageMagick 7.0.6-8 Q16 allows remote malicious users to cause a denial of service or code execution via a crafted file.
Imagemagick Imagemagick 7.0.6-8
8.8
CVSSv3
CVE-2017-12983
Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c in ImageMagick 7.0.6-8 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file.
Imagemagick Imagemagick 7.0.6-8
6.5
CVSSv3
CVE-2017-14249
ImageMagick 7.0.6-8 Q16 mishandles EOF checks in ReadMPCImage in coders/mpc.c, leading to division by zero in GetPixelCacheTileSize in MagickCore/cache.c, allowing remote malicious users to cause a denial of service via a crafted file.
Imagemagick Imagemagick 7.0.6-8
6.5
CVSSv3
CVE-2017-14248
A heap-based buffer over-read in SampleImage() in MagickCore/resize.c in ImageMagick 7.0.6-8 Q16 allows remote malicious users to cause a denial of service via a crafted file.
Imagemagick Imagemagick 7.0.6-8
6.5
CVSSv3
CVE-2017-13131
In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows malicious users to cause a denial of service (memory consumption in NewLinkedList in MagickCore/linked-list.c) via a crafted file.
Imagemagick Imagemagick 7.0.6-8
6.5
CVSSv3
CVE-2017-13133
In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows malicious users to cause a denial of service (load_tile memory exhaustion) via a crafted file.
Imagemagick Imagemagick 7.0.6-8
6.5
CVSSv3
CVE-2017-13132
In ImageMagick 7.0.6-8, the WritePDFImage function in coders/pdf.c operates on an incorrect data structure in the "dump uncompressed PseudoColor packets" step, which allows malicious users to cause a denial of service (assertion failure in WriteBlobStream in MagickCore/...
Imagemagick Imagemagick 7.0.6-8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started