Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.3
CVSSv3

CVE-2023-39978

Published: 08/08/2023 Updated: 30/11/2023
CVSS v3 Base Score: 3.3 | Impact Score: 1.4 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Imagemagick

Vulnerability Summary

ImageMagick prior to 6.9.12-91 allows malicious users to cause a denial of service (memory consumption) in Magick::Draw.

Vulnerable Product Search on Vulmon Subscribe to Product

imagemagick imagemagick

fedoraproject fedora 37

Vendor Advisories

Red Hat:
DescriptionThe MITRE CVE dictionary describes this issue as: ImageMagick before 6912-91 allows attackers to cause a denial of service (memory consumption) in Magick::Draw ...

References

CWE-401https://github.com/rmagick/rmagick/pull/1406/fileshttps://github.com/ImageMagick/ImageMagick6/commit/c90e79b3b22fec309cab55af2ee606f71b027b12https://github.com/ImageMagick/ImageMagick6/compare/6.9.12-90...6.9.12-91https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4UFQJCYJ23HWHNDOVKBHZQ7HCXXL6MM3/https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2023-39978
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook