Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick - vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2016-5687
The VerticalFilter function in the DDS coder in ImageMagick prior to 6.9.4-3 and 7.x prior to 7.0.1-4 allows remote malicious users to have unspecified impact via a crafted DDS file, which triggers an out-of-bounds read.
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Oracle Solaris 11.3
668
VMScore
CVE-2016-5689
The DCM reader in ImageMagick prior to 6.9.4-5 and 7.x prior to 7.0.1-7 allows remote malicious users to have unspecified impact by leveraging lack of NULL pointer checks.
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-5
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-6
668
VMScore
CVE-2016-5690
The ReadDCMImage function in DCM reader in ImageMagick prior to 6.9.4-5 and 7.x prior to 7.0.1-7 allows remote malicious users to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-5
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-6
668
VMScore
CVE-2016-5691
The DCM reader in ImageMagick prior to 6.9.4-5 and 7.x prior to 7.0.1-7 allows remote malicious users to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixel.blue.
Oracle Solaris 11.3
Imagemagick Imagemagick 7.0.1-4
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.1-5
Imagemagick Imagemagick 7.0.1-3
Imagemagick Imagemagick 7.0.1-2
Imagemagick Imagemagick
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick 7.0.1-6
668
VMScore
CVE-2016-4564
The DrawImage function in MagickCore/draw.c in ImageMagick prior to 6.9.4-0 and 7.x prior to 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote malicious users to cause a denial of service (buffer overflow and application crash) o...
Imagemagick Imagemagick 7.0.1-1
Imagemagick Imagemagick 7.0.0-0
Imagemagick Imagemagick 7.0.1-0
Imagemagick Imagemagick
668
VMScore
CVE-2010-2233
tif_getimage.c in LibTIFF 3.9.0 and 3.9.2 on 64-bit platforms, as used in ImageMagick, does not properly perform vertical flips, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted TIFF image, relat...
Libtiff Libtiff 3.9.2
Libtiff Libtiff 3.9.0
668
VMScore
CVE-2006-5099
lib/exec/fetch.php in DokuWiki prior to 2006-03-09e, when conf[imconvert] is configured to use ImageMagick, allows remote malicious users to execute arbitrary commands via shell metacharacters in the (1) w and (2) h parameters, which are not filtered when invoking convert.
Andreas Gohr Dokuwiki Release 2006-03-09
Andreas Gohr Dokuwiki Release 2006-03-09e
Andreas Gohr Dokuwiki Release 2006-03-05
668
VMScore
CVE-2006-3376
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote malicious users to execute arbitrary code via the MaxRecordSize header field in a WMF file.
Wvware Wv2 0.2.3
Wvware Wv2 0.2.1
Wvware Libwmf 0.2.8 .4
Wvware Wv2 0.2.2
668
VMScore
CVE-2006-2440
Heap-based buffer overflow in the libMagick component of ImageMagick 6.0.6.2 might allow malicious users to execute arbitrary code via an image index array that triggers the overflow during filename glob expansion by the ExpandFilenames function.
Imagemagick Imagemagick 6.0.6.2
Imagemagick Imagemagick 6.2.4
668
VMScore
CVE-2005-4601
The delegate code in ImageMagick 6.2.4.5-0.3 allows remote malicious users to execute arbitrary commands via shell metacharacters in a filename that is processed by the display command.
Imagemagick Imagemagick 6.2.4.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »