Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2016-3718

🗓️ 05 May 2016 18:00:00Reported by redhatType 
cve
 cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 1080 Views

The HTTP and FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow server-side request forgery (SSRF) attacks via crafted image

Related
Detection
Refs
Social
ReporterTitlePublishedViews
Family
FreeBSD		ImageMagick -- multiple vulnerabilities
3 May 201600:00
freebsd
0day.today		ImageMagick 6.9.3-9 / 7.0.1-0 - Multiple Vulnerabilities (ImageTragick)
4 May 201600:00
zdt
ALT Linux		Security fix for the ALT Linux 7 package ImageMagick version 6.8.4.10-alt3.M70P.1
20 May 201600:00
altlinux
ATTACKERKB		CVE-2016-3718
5 May 201600:00
attackerkb
Amazon		Important: ImageMagick
11 May 201600:00
amazon
Tenable Nessus		Amazon Linux AMI : ImageMagick (ALAS-2016-699) (ImageTragick)
12 May 201600:00
nessus
Tenable Nessus		CentOS 6 / 7 : ImageMagick (CESA-2016:0726) (ImageTragick)
11 May 201600:00
nessus
Tenable Nessus		Debian DLA-1401-1 : graphicsmagick security update
28 Jun 201800:00
nessus
Tenable Nessus		Debian DLA-484-1 : graphicsmagick security update (ImageTragick)
24 May 201600:00
nessus
Tenable Nessus		Debian DLA-486-1 : imagemagick security update (ImageTragick)
23 May 201600:00
nessus
Rows per page
NVD
Node
redhatenterprise_linux_desktopMatch6.0
OR
redhatenterprise_linux_desktopMatch7.0
OR
redhatenterprise_linux_eusMatch6.7
OR
redhatenterprise_linux_eusMatch7.2
OR
redhatenterprise_linux_eusMatch7.3
OR
redhatenterprise_linux_eusMatch7.4
OR
redhatenterprise_linux_eusMatch7.5
OR
redhatenterprise_linux_eusMatch7.6
OR
redhatenterprise_linux_eusMatch7.7
OR
redhatenterprise_linux_for_ibm_z_systemsMatch6.0_s390x
OR
redhatenterprise_linux_for_ibm_z_systemsMatch7.0_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch6.7_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch7.2_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch7.3_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch7.4_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch7.5_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch7.6_s390x
OR
redhatenterprise_linux_for_ibm_z_systems_eusMatch7.7_s390x
OR
redhatenterprise_linux_for_power_big_endianMatch6.0_ppc64
OR
redhatenterprise_linux_for_power_big_endianMatch7.0_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch6.7_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch7.2_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch7.3_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch7.4_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch7.5_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch7.6_ppc64
OR
redhatenterprise_linux_for_power_big_endian_eusMatch7.7_ppc64
OR
redhatenterprise_linux_for_power_little_endianMatch7.0_ppc64le
OR
redhatenterprise_linux_for_power_little_endian_eusMatch7.2_ppc64le
OR
redhatenterprise_linux_for_power_little_endian_eusMatch7.3_ppc64le
OR
redhatenterprise_linux_for_power_little_endian_eusMatch7.4_ppc64le
OR
redhatenterprise_linux_for_power_little_endian_eusMatch7.5_ppc64le
OR
redhatenterprise_linux_for_power_little_endian_eusMatch7.6_ppc64le
OR
redhatenterprise_linux_for_power_little_endian_eusMatch7.7_ppc64le
OR
redhatenterprise_linux_hpc_nodeMatch6.0
OR
redhatenterprise_linux_hpc_nodeMatch7.0
OR
redhatenterprise_linux_hpc_node_eusMatch7.2
OR
redhatenterprise_linux_serverMatch6.0
OR
redhatenterprise_linux_serverMatch7.0
OR
redhatenterprise_linux_server_ausMatch7.2
OR
redhatenterprise_linux_server_ausMatch7.3
OR
redhatenterprise_linux_server_ausMatch7.4
OR
redhatenterprise_linux_server_ausMatch7.6
OR
redhatenterprise_linux_server_ausMatch7.7
OR
redhatenterprise_linux_server_from_rhuiMatch6.0
OR
redhatenterprise_linux_server_from_rhuiMatch7.0
OR
redhatenterprise_linux_server_supplementary_eusMatch6.7z
OR
redhatenterprise_linux_server_tusMatch7.2
OR
redhatenterprise_linux_server_tusMatch7.3
OR
redhatenterprise_linux_server_tusMatch7.6
OR
redhatenterprise_linux_server_tusMatch7.7
OR
redhatenterprise_linux_workstationMatch6.0
OR
redhatenterprise_linux_workstationMatch7.0
Node
imagemagickimagemagickRange<6.9.3-10
OR
imagemagickimagemagickMatch7.0.0-0
OR
imagemagickimagemagickMatch7.0.1-0
Node
canonicalubuntu_linuxMatch12.04lts
OR
canonicalubuntu_linuxMatch14.04esm
OR
canonicalubuntu_linuxMatch15.10
OR
canonicalubuntu_linuxMatch16.04esm
Node
oraclelinuxMatch6-
OR
oraclelinuxMatch7-
OR
oraclesolarisMatch10
OR
oraclesolarisMatch11.3
Node
suselinux_enterprise_debuginfoMatch11sp2
OR
suselinux_enterprise_debuginfoMatch11sp3
OR
suselinux_enterprise_debuginfoMatch11sp4
OR
susemanagerMatch2.1
OR
susemanager_proxyMatch2.1
OR
suseopenstack_cloudMatch5
OR
opensuseleapMatch42.1
OR
opensuseopensuseMatch13.2
OR
suselinux_enterprise_desktopMatch12-
OR
suselinux_enterprise_desktopMatch12sp1
OR
suselinux_enterprise_serverMatch11sp2ltss
OR
suselinux_enterprise_serverMatch11sp3ltss
OR
suselinux_enterprise_serverMatch11sp4
OR
suselinux_enterprise_serverMatch12-
OR
suselinux_enterprise_serverMatch12sp1
OR
suselinux_enterprise_software_development_kitMatch11sp4
OR
suselinux_enterprise_software_development_kitMatch12-
OR
suselinux_enterprise_software_development_kitMatch12sp1
OR
suselinux_enterprise_workstation_extensionMatch12-
OR
suselinux_enterprise_workstation_extensionMatch12sp1

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
22 Apr 2026 14:35Current
6.7Medium risk
Vulners AI Score6.7
CVSS 24.3
CVSS 3.15.5
EPSS0.86935
SSVC
CWE-918In Wild
cve-2016-3718imagemagickssrfhttpftpsecurity vulnerability
1080