Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graphicsmagick graphicsmagick vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2017-9098
ImageMagick prior to 7.0.5-2 and GraphicsMagick prior to 1.3.24 use uninitialized memory in the RLE decoder, allowing an malicious user to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a long-running server pro...
Imagemagick Imagemagick
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2019-11506
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an malicious user to cause a denial of service or possibly have unspecified other impact via a crafted image fil...
Graphicsmagick Graphicsmagick 1.3.31
Graphicsmagick Graphicsmagick 1.3.30
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7.5
CVSSv3
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote malicious users to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string.
Graphicsmagick Graphicsmagick 1.3.24
Opensuse Leap 42.1
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
7.5
CVSSv3
CVE-2020-12672
GraphicsMagick up to and including 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
9.8
CVSSv3
CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote malicious users to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317.
Graphicsmagick Graphicsmagick 1.3.24
Opensuse Leap 42.1
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
8.8
CVSSv3
CVE-2018-6799
The AcquireCacheNexus function in magick/pixel_cache.c in GraphicsMagick prior to 1.3.28 allows remote malicious users to cause a denial of service (heap overwrite) or possibly have unspecified other impact via a crafted image file, because a pixel staging area is not used.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2017-16669
coders/wpg.c in GraphicsMagick 1.3.26 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file, related to the AcquireCacheNexus function in magick/pixel_cache.c.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
8.8
CVSSv3
CVE-2017-17912
In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region.
Graphicsmagick Graphicsmagick 1.3.27
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2017-17915
In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadMNGImage in coders/png.c, related to accessing one byte before testing whether a limit has been reached.
Graphicsmagick Graphicsmagick 1.3.27
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Debian Debian Linux 7.0
6.5
CVSSv3
CVE-2017-18231
An issue exists in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadEnhMetaFile in coders/emf.c, which allows malicious users to cause a denial of service via a crafted file.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »