Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-27756
In ParseMetaGeometry() of MagickCore/geometry.c, image height and width calculations can lead to divide-by-zero conditions which also lead to undefined behavior. This flaw can be triggered by a crafted input file processed by ImageMagick and could impact application availability....
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2020-27829
A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick prior to 7.0.10-45.
Imagemagick Imagemagick
6.2
CVSSv3
CVE-2014-8716
The JPEG decoder in ImageMagick prior to 6.8.9-9 allows local users to cause a denial of service (out-of-bounds memory access and crash).
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2017-13144
In ImageMagick prior to 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2015-8902
The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x prior to 6.9.0-5 Beta allows remote malicious users to cause a denial of service (infinite loop) via a crafted PDB file.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2015-8903
The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x prior to 6.9.0-5 Beta allows remote malicious users to cause a denial of service (infinite loop) via a crafted VICAR file.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2023-3745
A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel() function in quantum-private.h. This issue may allow a local malicious user to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an applicatio...
Imagemagick Imagemagick
1 Github repository
6.5
CVSSv3
CVE-2016-7523
coders/meta.c in ImageMagick allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted file.
Imagemagick Imagemagick -
9.8
CVSSv3
CVE-2018-16328
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2018-16329
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty function in MagickCore/property.c.
Imagemagick Imagemagick
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »