0.003 Low
EPSS
Percentile
69.7%
In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file.
bugzilla.redhat.com/show_bug.cgi?id=1637189
www.cve.org/CVERecord?id=CVE-2018-18024 https://nvd.nist.gov/vuln/detail/CVE-2018-18024