Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2017-11750
The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted file.
Imagemagick Imagemagick 6.9.9-4
Imagemagick Imagemagick 7.0.6-4
6.5
CVSSv3
CVE-2017-13144
In ImageMagick prior to 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2019-19952
In ImageMagick 7.0.9-7 Q16, there is a use-after-free in the function MngInfoDiscardObject of coders/png.c, related to ReadOneMNGImage.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2021-20224
An integer overflow issue exists in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted...
Imagemagick Imagemagick
7.8
CVSSv3
CVE-2019-13136
ImageMagick prior to 7.0.8-50 has an integer overflow vulnerability in the function TIFFSeekCustomStream in coders/tiff.c.
Imagemagick Imagemagick
3.6
CVSSv3
CVE-2021-39212
ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when spec...
Imagemagick Imagemagick
9.1
CVSSv3
CVE-2016-6520
Buffer overflow in MagickCore/enhance.c in ImageMagick prior to 7.0.2-7 allows remote malicious users to have unspecified impact via vectors related to pixel cache morphology.
Imagemagick Imagemagick
7.8
CVSSv3
CVE-2014-9824
Heap-based buffer overflow in ImageMagick allows remote malicious users to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.
Imagemagick Imagemagick -
5.5
CVSSv3
CVE-2014-9915
Off-by-one error in ImageMagick prior to 6.6.0-4 allows remote malicious users to cause a denial of service (application crash) via a crafted 8BIM profile.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2016-5239
The gnuplot delegate functionality in ImageMagick prior to 6.9.4-0 and GraphicsMagick allows remote malicious users to execute arbitrary commands via unspecified vectors.
Imagemagick Imagemagick
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »