Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2016-10061
The ReadGROUP4Image function in coders/tiff.c in ImageMagick prior to 7.0.1-10 does not check the return value of the fputc function, which allows remote malicious users to cause a denial of service (crash) via a crafted image file.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2016-10066
Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick prior to 6.9.4-5 allows remote malicious users to cause a denial of service (application crash) via a crafted file.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2016-5239
The gnuplot delegate functionality in ImageMagick prior to 6.9.4-0 and GraphicsMagick allows remote malicious users to execute arbitrary commands via unspecified vectors.
Imagemagick Imagemagick
9.1
CVSSv3
CVE-2016-6520
Buffer overflow in MagickCore/enhance.c in ImageMagick prior to 7.0.2-7 allows remote malicious users to have unspecified impact via vectors related to pixel cache morphology.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2019-18853
ImageMagick prior to 7.0.9-0 allows remote malicious users to cause a denial of service because XML_PARSE_HUGE is not properly restricted in coders/svg.c, related to SVG and libxml2.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2017-13144
In ImageMagick prior to 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.
Imagemagick Imagemagick
8.8
CVSSv3
CVE-2019-17547
In ImageMagick prior to 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2016-10047
Memory leak in the NewXMLTree function in magick/xml-tree.c in ImageMagick prior to 6.9.4-7 allows remote malicious users to cause a denial of service (memory consumption) via a crafted XML file.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2016-10053
The WriteTIFFImage function in coders/tiff.c in ImageMagick prior to 6.9.5-8 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
Imagemagick Imagemagick
7.8
CVSSv3
CVE-2016-10054
Buffer overflow in the WriteMAPImage function in coders/map.c in ImageMagick prior to 6.9.5-8 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Imagemagick Imagemagick
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »