Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick 7.0.8-26 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-16749
In ImageMagick 7.0.7-29 and previous versions, a missing NULL check in ReadOneJNGImage in coders/png.c allows an malicious user to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file.
Imagemagick Imagemagick
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Debian Debian Linux 8.0
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2019-19948
In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer overflow in the function WriteSGIImage of coders/sgi.c.
Imagemagick Imagemagick 7.0.8-43
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 20.04
6.5
CVSSv3
CVE-2017-18271
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows malicious users to cause a denial of service (CPU exhaustion) via a crafted MIFF image file.
Imagemagick Imagemagick 7.0.7-16
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 7.0
6.5
CVSSv3
CVE-2017-18273
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows malicious users to cause a denial of service (CPU exhaustion) via a crafted image file that is mishandled in a GetImageIndexInList ca...
Imagemagick Imagemagick 7.0.7-16
Debian Debian Linux 7.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 14.04
6.5
CVSSv3
CVE-2017-1000476
ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds.c, which allows malicious users to cause a denial of service.
Imagemagick Imagemagick 7.0.7-12
Debian Debian Linux 7.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 14.04
7.5
CVSSv3
CVE-2019-7175
In ImageMagick prior to 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c.
Imagemagick Imagemagick
Opensuse Leap 15.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
7.5
CVSSv3
CVE-2019-7398
In ImageMagick prior to 7.0.8-25, a memory leak exists in WriteDIBImage in coders/dib.c.
Imagemagick Imagemagick
Opensuse Leap 15.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
6.5
CVSSv3
CVE-2018-20467
In coders/bmp.c in ImageMagick prior to 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file.
Imagemagick Imagemagick
Opensuse Leap 15.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
6.5
CVSSv3
CVE-2019-13310
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of an error in MagickWand/mogrify.c.
Imagemagick Imagemagick 7.0.8-50
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Opensuse Leap 15.0
Opensuse Leap 15.1
7.5
CVSSv3
CVE-2019-7397
In ImageMagick prior to 7.0.8-25 and GraphicsMagick up to and including 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c.
Imagemagick Imagemagick
Graphicsmagick Graphicsmagick
Opensuse Leap 15.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 19.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »