Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
imagemagick vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2016-10071
coders/mat.c in ImageMagick prior to 6.9.4-0 allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
Imagemagick Imagemagick
7.1
CVSSv3
CVE-2020-27752
A flaw was found in ImageMagick in MagickCore/quantum-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger a heap buffer overflow. This would most likely lead to an impact to application availability, but could potentially lead to an im...
Imagemagick Imagemagick
9.8
CVSSv3
CVE-2016-5239
The gnuplot delegate functionality in ImageMagick prior to 6.9.4-0 and GraphicsMagick allows remote malicious users to execute arbitrary commands via unspecified vectors.
Imagemagick Imagemagick
7.1
CVSSv3
CVE-2022-0284
A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. T...
Imagemagick Imagemagick
8.8
CVSSv3
CVE-2019-17547
In ImageMagick prior to 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free.
Imagemagick Imagemagick
6.5
CVSSv3
CVE-2019-10714
LocaleLowercase in MagickCore/locale.c in ImageMagick prior to 7.0.8-32 allows out-of-bounds access, leading to a SIGSEGV.
Imagemagick Imagemagick
3.6
CVSSv3
CVE-2021-39212
ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when spec...
Imagemagick Imagemagick
9.1
CVSSv3
CVE-2016-6520
Buffer overflow in MagickCore/enhance.c in ImageMagick prior to 7.0.2-7 allows remote malicious users to have unspecified impact via vectors related to pixel cache morphology.
Imagemagick Imagemagick
7.8
CVSSv3
CVE-2016-10049
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick prior to 6.9.4-4 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file.
Imagemagick Imagemagick
5.5
CVSSv3
CVE-2016-10053
The WriteTIFFImage function in coders/tiff.c in ImageMagick prior to 6.9.5-8 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
Imagemagick Imagemagick
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »