Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick imagemagick - vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-20224
An integer overflow issue exists in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted...
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2020-27753
There are several memory leaks in the MIFF coder in /coders/miff.c due to improper image depth values, which can be triggered by a specially crafted input file. These leaks could potentially lead to an impact to application availability or cause a denial of service. It was origin...
Imagemagick Imagemagick
3.3
CVSSv3
CVE-2020-27755
in SetImageExtent() of /MagickCore/image.c, an incorrect image depth size can cause a memory leak because the code which checks for the proper image depth size does not reset the size in the event there is an invalid size. The patch resets the depth to a proper size before throwi...
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2020-27829
A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick prior to 7.0.10-45.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2023-3745
A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel() function in quantum-private.h. This issue may allow a local malicious user to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an applicatio...
Imagemagick Imagemagick
1 Github repository
7.5
CVSSv3
CVE-2021-20310
A flaw was found in ImageMagick in versions prior to 7.0.11, where a division by zero ConvertXYZToJzazbz() of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The hi...
Imagemagick Imagemagick
7.5
CVSSv3
CVE-2021-20311
A flaw was found in ImageMagick in versions prior to 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick. The...
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2023-2157
A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to the application crashing.
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2019-19952
In ImageMagick 7.0.9-7 Q16, there is a use-after-free in the function MngInfoDiscardObject of coders/png.c, related to ReadOneMNGImage.
Imagemagick Imagemagick
8.8
CVSSv3
CVE-2019-17547
In ImageMagick prior to 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free.
Imagemagick Imagemagick
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »