Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2016-6520
Buffer overflow in MagickCore/enhance.c in ImageMagick prior to 7.0.2-7 allows remote malicious users to have unspecified impact via vectors related to pixel cache morphology.
Imagemagick Imagemagick
7.8
CVSSv3
CVE-2017-5509
coders/psd.c in ImageMagick allows remote malicious users to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
Imagemagick Imagemagick
7.1
CVSSv3
CVE-2020-13902
ImageMagick 7.0.9-27 up to and including 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2017-13144
In ImageMagick prior to 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2015-8900
The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote malicious users to cause a denial of service (infinite loop) via a crafted HDR file.
Imagemagick Imagemagick
8.8
CVSSv3
CVE-2019-17541
ImageMagick prior to 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c.
Imagemagick Imagemagick
1 Github repository
9.8
CVSSv3
CVE-2018-16328
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Imagemagick Imagemagick
8.8
CVSSv3
CVE-2019-17547
In ImageMagick prior to 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2018-16329
In ImageMagick prior to 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty function in MagickCore/property.c.
Imagemagick Imagemagick
7.5
CVSSv3
CVE-2014-9804
vision.c in ImageMagick allows remote malicious users to cause a denial of service (infinite loop) via vectors related to "too many object."
Imagemagick Imagemagick -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »