CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
82.0%
It was discovered that ImageMagick incorrectly handled certain
malformed image files. If a user or automated system using ImageMagick
were tricked into processing a specially crafted file, an attacker could
exploit this to cause a denial of service or affect the reliability of the
system. The vulnerabilities included memory leaks, buffer overflows, and
improper handling of pixel data.
ubuntu.com/security/CVE-2019-7397
ubuntu.com/security/CVE-2019-7398
ubuntu.com/security/CVE-2019-9956
ubuntu.com/security/CVE-2020-19667
ubuntu.com/security/CVE-2020-25664
ubuntu.com/security/CVE-2020-25665
ubuntu.com/security/CVE-2020-25666
ubuntu.com/security/CVE-2020-25674
ubuntu.com/security/CVE-2020-25676
ubuntu.com/security/CVE-2020-27560
ubuntu.com/security/CVE-2020-27750
ubuntu.com/security/CVE-2020-27753
ubuntu.com/security/CVE-2020-27754
ubuntu.com/security/CVE-2020-27755
ubuntu.com/security/CVE-2020-27758
ubuntu.com/security/CVE-2020-27759
ubuntu.com/security/CVE-2020-27760
ubuntu.com/security/CVE-2020-27761
ubuntu.com/security/CVE-2020-27762
ubuntu.com/security/CVE-2020-27763
ubuntu.com/security/CVE-2020-27764
ubuntu.com/security/CVE-2020-27765
ubuntu.com/security/CVE-2020-27766
ubuntu.com/security/CVE-2020-27767
ubuntu.com/security/CVE-2020-27768
ubuntu.com/security/CVE-2020-27769
ubuntu.com/security/CVE-2020-27770
ubuntu.com/security/CVE-2020-27771
ubuntu.com/security/CVE-2020-27772
ubuntu.com/security/CVE-2020-27773
ubuntu.com/security/CVE-2020-27774
ubuntu.com/security/CVE-2020-27775
ubuntu.com/security/CVE-2020-27776
ubuntu.com/security/notices/USN-7068-1
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
82.0%