Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2016-5691
The DCM reader in ImageMagick prior to 6.9.4-5 and 7.x prior to 7.0.1-7 allows remote malicious users to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixel.blue.
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-5
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-6
7.5
CVSSv2
CVE-2016-4564
The DrawImage function in MagickCore/draw.c in ImageMagick prior to 6.9.4-0 and 7.x prior to 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote malicious users to cause a denial of service (buffer overflow and application crash) o...
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.0-0
Imagemagick Imagemagick
7.5
CVSSv2
CVE-2010-2233
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, relat...
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.9.0
7.5
CVSSv2
CVE-2006-5099
lib/exec/fetch.php in DokuWiki prior to 2006-03-09e, when conf[imconvert] is configured to use ImageMagick, allows remote malicious users to execute arbitrary commands via shell metacharacters in the (1) w and (2) h parameters, which are not filtered when invoking convert.
Andreas Gohr Dokuwiki Release 2006-03-05
Andreas Gohr Dokuwiki Release 2006-03-09
Andreas Gohr Dokuwiki Release 2006-03-09e
7.5
CVSSv2
CVE-2006-3376
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote malicious users to execute arbitrary code via the MaxRecordSize header field in a WMF file.
Wvware Wv2 0.2.2
Wvware Wv2 0.2.3
Wvware Libwmf 0.2.8 .4
Wvware Wv2 0.2.1
7.5
CVSSv2
CVE-2006-2440
Heap-based buffer overflow in the libMagick component of ImageMagick 6.0.6.2 might allow malicious users to execute arbitrary code via an image index array that triggers the overflow during filename glob expansion by the ExpandFilenames function.
Imagemagick Imagemagick 6.2.4
Imagemagick Imagemagick 6.0.6.2
7.5
CVSSv2
CVE-2005-4601
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command.
Imagemagick Imagemagick 6.2.4.5
7.5
CVSSv2
CVE-2005-0005
Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote malicious users to execute arbitrary code via a .PSD image file with a large number of layers.
Graphicsmagick Graphicsmagick 1.1.3
Graphicsmagick Graphicsmagick 1.1.4
Imagemagick Imagemagick 6.0.2.5
Imagemagick Imagemagick 6.0.3
Imagemagick Imagemagick 6.1.1.6
Imagemagick Imagemagick 6.1.2
Imagemagick Imagemagick 6.2.0.7
Sgi Propack 3.0
Graphicsmagick Graphicsmagick 1.0.6
Graphicsmagick Graphicsmagick 1.1
Imagemagick Imagemagick 6.0.1
Imagemagick Imagemagick 6.0.2
Imagemagick Imagemagick 6.0.8
Imagemagick Imagemagick 6.1
Imagemagick Imagemagick 6.2
Imagemagick Imagemagick 6.2.0.4
Graphicsmagick Graphicsmagick 1.0
Imagemagick Imagemagick 5.4.7
Imagemagick Imagemagick 6.0
Imagemagick Imagemagick 6.0.6
Imagemagick Imagemagick 6.0.7
Imagemagick Imagemagick 6.1.6
7.5
CVSSv2
CVE-2005-0397
Format string vulnerability in the SetImageInfo function in image.c for ImageMagick prior to 6.0.2.5 may allow remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a filename argument to conver...
Imagemagick Imagemagick 5.5
Imagemagick Imagemagick 5.2
Imagemagick Imagemagick 5.3
Imagemagick Imagemagick 5.4
7.5
CVSSv2
CVE-2005-0762
Heap-based buffer overflow in the SGI parser in ImageMagick prior to 6.0 allows remote malicious users to execute arbitrary code via a crafted SGI image file.
Imagemagick Imagemagick 5.4.7
Imagemagick Imagemagick 5.4.8
Imagemagick Imagemagick 6.0
Imagemagick Imagemagick 6.0.1
Imagemagick Imagemagick 5.4.8.2.1.1.0
Imagemagick Imagemagick 5.5.3.2.1.2.0
Imagemagick Imagemagick 5.4.3
Imagemagick Imagemagick 5.4.4.5
Imagemagick Imagemagick 5.5.6.0 2003-04-09
Imagemagick Imagemagick 5.5.7
Imagemagick Imagemagick 5.3.3
Imagemagick Imagemagick 5.3.8
Imagemagick Imagemagick 5.5.4
Imagemagick Imagemagick 5.5.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »