Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.29 views

Ubuntu 20.04 LTS / 22.04 LTS : ImageMagick vulnerabilities (USN-6200-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6200-2 advisory. USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This...

5.5CVSS6.6AI score0.01018EPSS
Exploits2References3
Ubuntu
Ubuntu
added 2024/07/25 11:55 p.m.57 views

USN-6200-2: ImageMagick vulnerabilities

USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This update fixes the problem. Original advisory details: It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected...

5.5CVSS7AI score0.01018EPSS
Exploits2
Ubuntu
Ubuntu
added 2023/07/04 9:23 a.m.436 views

USN-6200-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected PDF files. An attacker could possibly use this issue to inject additional shell commands and perform arbitrary code execution. This issue only affected Ubuntu 20.04 LTS. CVE-2020-29599 It was...

7.8CVSS6.9AI score0.07508EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.31 views

Fedora 37 : ImageMagick (2023-541c04817f)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-541c04817f advisory. Update ImageMagick to 6.9.12.86 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

5.5CVSS6.1AI score0.00593EPSS
Exploits1References2
OSV
OSV
added 2023/05/06 6:19 p.m.12 views

MGASA-2023-0161 Updated imagemagick packages fix security vulnerability

A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a denial of...

5.5CVSS5.8AI score0.00593EPSS
Exploits1References4
Amazon
Amazon
added 2023/05/03 12:0 a.m.5 views

Medium: ImageMagick

Issue Overview: Possible heap-based buffer overflow attack in ImportMultiSpectralQuantum in MagickCore/quantum-import.c for ImageMagick CVE-2023-1906 Affected Packages: ImageMagick Issue Correction: Run dnf update ImageMagick --releasever 2023.0.20230503 or dnf update --advisory ALAS2023-2023-170...

5.5CVSS5.7AI score0.00593EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/04/21 12:0 a.m.38 views

SUSE SLED15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2023:1927-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:1927-1 advisory. - CVE-2023-1906: Fixed a heap-based buffer overflow in ImportMultiSpectralQuantum. bsc1210308 Tenable has...

5.5CVSS6.5AI score0.00593EPSS
Exploits1References4
OSV
OSV
added 2023/04/20 7:3 a.m.7 views

SUSE-SU-2023:1927-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2023-1906: Fixed a heap-based buffer overflow in ImportMultiSpectralQuantum. bsc1210308...

5.5CVSS5.9AI score0.00593EPSS
Exploits1References3
OSV
OSV
added 2023/04/12 12:0 a.m.28 views

CVE-2023-1906

A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a denial of servi...

5.5CVSS5.9AI score0.00593EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2023/04/12 12:0 a.m.5 views

CVE-2023-1906

A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a denial of servi...

5.8AI score0.00593EPSS
Exploits1References6
CVE
CVE
added 2023/04/12 12:0 a.m.96 views

CVE-2023-1906

ImageMagick vulnerability CVE-2023-1906 is a heap-based buffer overflow in ImportMultiSpectralQuantum() (MagickCore/quantum-import.c). A crafted file can trigger an out-of-bounds read, causing an application crash and denial of service. Affected software is ImageMagick; root cause is a malformed ...

5.5CVSS5.5AI score0.00593EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder