Lucene search
China National Vulnerability DatabaseCNVD-2023-63193HistoryJul 30, 2023 - 12:00 a.m.
ImageMagick Buffer Overflow Vulnerability (CNVD-2023-63193)
2023-07-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
image processing software
buffer overflow
vulnerability
remote attacker
arbitrary code
denial of service
0.0004 Low
EPSS
Percentile
10.5%
ImageMagick is a set of open-source image processing software from the American company ImageMagick. The software can read, convert or write images in a variety of formats. ImageMagick has a buffer overflow vulnerability, the vulnerability stems from the function PushCharPixel() fails to correctly validate the length and size of the input data, which can be exploited by a remote attacker to execute arbitrary code on the system or cause a denial of service attack.
Related
redhatcve
redhatcve
CVE-2023-3745
2023-07-18 09:07:13
cve
cve
CVE-2023-3745
2023-07-24 16:15:13
nvd
nvd
CVE-2023-3745
2023-07-24 16:15:13
nessus
nessus
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2023:3357-1)
2023-08-19 00:00:00
ImageMagick 6.0 < 6.9.11-0, 7.0 < 7.0.10-0 Heap-based Buffer Overflow DoS
2023-09-05 00:00:00
openSUSE 15 Security Update : ImageMagick (SUSE-SU-2023:3186-1)
2023-08-04 00:00:00
ubuntucve
ubuntucve
CVE-2023-3745
2023-07-24 00:00:00
amazon
amazon
Medium: ImageMagick
2023-08-03 20:16:00
Medium: ImageMagick
2023-08-03 18:09:00
debiancve
debiancve
CVE-2023-3745
2023-07-24 16:15:13
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:3357-1)
2023-08-21 00:00:00
openSUSE: Security Advisory for ImageMagick (SUSE-SU-2023:3186-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4634-1)
2023-12-04 00:00:00
cvelist
cvelist
prion
prion
Heap overflow
2023-07-24 16:15:00
veracode
veracode
Denial Of Service (DoS)
2023-08-06 06:47:34
osv
osv
CVE-2023-3745
2023-07-24 16:15:13