Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

551 matches found

OSV
OSVadded 2020/12/04 3:15 p.m.15 views

CVE-2020-27770

Due to a missing check for 0 value of replaceextent, it is possible for offset p to overflow in SubstituteString, causing potential impact to application availability. This could be triggered by a crafted input file that is processed by ImageMagick. This flaw affects ImageMagick versions prior to...

5.5CVSS6.5AI score
Exploits0References3
OSV
OSVadded 2020/12/04 3:15 p.m.23 views

CVE-2020-27771

In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...

3.3CVSS6.2AI score
Exploits0References3
OSV
OSVadded 2020/12/04 3:15 p.m.15 views

CVE-2020-27767

A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of types float and unsigned char. This would most likely lead to an impact to application...

3.3CVSS6.1AI score
Exploits0References3
OSV
OSVadded 2020/12/04 3:15 p.m.19 views

CVE-2020-27765

A flaw was found in ImageMagick in MagickCore/segment.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. This would most likely lead to an impact to application availability, but could potentially cause...

3.3CVSS6.1AI score
Exploits0References3
UbuntuCve
UbuntuCveadded 2020/12/04 3:15 p.m.23 views

CVE-2020-27770

Due to a missing check for 0 value of replaceextent, it is possible for offset p to overflow in SubstituteString, causing potential impact to application availability. This could be triggered by a crafted input file that is processed by ImageMagick. This flaw affects ImageMagick versions prior to...

5.5CVSS6.9AI score0.01133EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2020/12/04 3:15 p.m.24 views

CVE-2020-27766

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long. This would most likely lead to an impact to application availability,...

7.8CVSS6.8AI score0.01183EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2020/12/04 3:15 p.m.29 views

CVE-2020-27767

A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of types float and unsigned char. This would most likely lead to an impact to application...

4.3CVSS6.7AI score0.01124EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2020/12/04 3:15 p.m.23 views

CVE-2020-27765

A flaw was found in ImageMagick in MagickCore/segment.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. This would most likely lead to an impact to application availability, but could potentially cause...

4.3CVSS6.7AI score0.01001EPSS
Exploits1References3
Prion
Prionadded 2020/12/04 3:15 p.m.16 views

Design/Logic Flaw

A flaw was found in ImageMagick in MagickCore/segment.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. This would most likely lead to an impact to application availability, but could potentially cause...

4.3CVSS3.4AI score0.01001EPSS
Exploits1References3Affected Software3
Prion
Prionadded 2020/12/04 3:15 p.m.24 views

Input validation

In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...

4.3CVSS3.5AI score0.01161EPSS
Exploits1References3Affected Software3
Prion
Prionadded 2020/12/04 3:15 p.m.23 views

Design/Logic Flaw

A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of types float and unsigned char. This would most likely lead to an impact to application...

4.3CVSS3.4AI score0.01124EPSS
Exploits1References3Affected Software3
Prion
Prionadded 2020/12/04 3:15 p.m.27 views

Design/Logic Flaw

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long. This would most likely lead to an impact to application availability,...

6.8CVSS4.6AI score0.01183EPSS
Exploits1References3Affected Software2
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.19 views

CVE-2020-27776

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long. This would most likely lead to an impact to application availability,...

4.8AI score0.00874EPSS
Exploits1References2
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.18 views

CVE-2020-27774

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of a too large shift for 64-bit type ssizet. This would most likely lead to an impact to application availability, but...

4.9AI score0.01124EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.15 views

CVE-2020-27775

A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char. This would most likely lead to an impact to application availability, bu...

4.8AI score0.01124EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.30 views

CVE-2020-27770

Due to a missing check for 0 value of replaceextent, it is possible for offset p to overflow in SubstituteString, causing potential impact to application availability. This could be triggered by a crafted input file that is processed by ImageMagick. This flaw affects ImageMagick versions prior to...

6.1AI score0.01133EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.26 views

CVE-2020-27773

A flaw was found in ImageMagick in MagickCore/gem-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char or division by zero. This would most likely lead to an impact to...

4.9AI score0.00966EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.15 views

CVE-2020-27772

A flaw was found in ImageMagick in coders/bmp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned int. This would most likely lead to an impact to application availability, but could...

4.8AI score0.01124EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.19 views

CVE-2020-27767

A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of types float and unsigned char. This would most likely lead to an impact to application...

4.9AI score0.01124EPSS
Exploits1References3
Cvelist
Cvelistadded 2020/12/04 12:0 a.m.22 views

CVE-2020-27766

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long. This would most likely lead to an impact to application availability,...

7.2AI score0.01183EPSS
Exploits1References3
Rows per page
Query Builder