Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-11750
The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted file.
Imagemagick Imagemagick 6.9.9-4
Imagemagick Imagemagick 7.0.6-4
NA
CVE-2022-0284
A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. T...
Imagemagick Imagemagick
NA
CVE-2023-2157
A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to the application crashing.
Imagemagick Imagemagick
5.8
CVSSv2
CVE-2022-1114
A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a d...
Imagemagick Imagemagick
NA
CVE-2022-1115
A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.
Imagemagick Imagemagick
NA
CVE-2023-3745
A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel() function in quantum-private.h. This issue may allow a local malicious user to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an applicatio...
Imagemagick Imagemagick
1 Github repository
6.8
CVSSv2
CVE-2016-10052
Buffer overflow in the WriteProfile function in coders/jpeg.c in ImageMagick prior to 6.9.5-6 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Imagemagick Imagemagick
6.8
CVSSv2
CVE-2016-10057
Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick prior to 6.9.5-8 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Imagemagick Imagemagick
4.3
CVSSv2
CVE-2016-10062
The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote malicious users to cause a denial of service (application crash) via a crafted file.
Imagemagick Imagemagick -
7.5
CVSSv2
CVE-2018-16328
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Imagemagick Imagemagick
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »