Lucene search
K

130 matches found

Veracode
Veracode
added 2020/04/10 12:20 a.m.28 views

Arbitrary Code Execution

imagemagick is vulnerable to arbitrary code execution. The vulnerability exists if a victim opened a specially-crafted DCM, DIB, XBM, XCF or XWD file, an attacker could potentially execute arbitrary code with the privileges of the user running ImageMagick...

6.8CVSS6.1AI score0.03286EPSS
Exploits0References30Affected Software1
RedHat Linux
RedHat Linux
added 2020/03/31 8:15 p.m.8 views

ImageMagick: out of bounds write ReadDIBImage and WriteDIBImage in coders/dib.c

In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file...

8.8CVSS5.8AI score0.03295EPSS
Exploits1References4
NVD
NVD
added 2019/04/25 5:29 p.m.18 views

CVE-2019-9135

DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed DIB format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

7.8CVSS8AI score0.0126EPSS
Exploits0References1
OSV
OSV
added 2019/04/25 5:29 p.m.4 views

CVE-2019-9135

DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed DIB format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

7.8CVSS6AI score0.0126EPSS
Exploits0References1
Prion
Prion
added 2019/04/25 5:29 p.m.15 views

Heap overflow

DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed DIB format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

6.8CVSS8AI score0.0126EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/04/25 4:49 p.m.21 views

CVE-2019-9135

DaviewIndy 8.98.7 and earlier versions have a Heap-based overflow vulnerability, triggered when the user opens a malformed DIB format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

7.8CVSS8AI score0.0126EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/04/02 12:0 a.m.30 views

EulerOS 2.0 SP2 : ImageMagick (EulerOS-SA-2019-1114)

According to the version of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In ImageMagick before 7.0.8-25, a memory leak exists in WriteDIBImage in coders/dib.c.CVE-2019-7398 Note that Tenable Network Security has...

7.5CVSS6.9AI score0.03716EPSS
Exploits1References2
Prion
Prion
added 2018/12/17 8:29 p.m.26 views

Information disclosure

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

4.3CVSS6.3AI score0.02278EPSS
Exploits1References6Affected Software2
UbuntuCve
UbuntuCve
added 2018/12/17 8:29 p.m.30 views

CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

6.5CVSS6.8AI score0.02278EPSS
Exploits1References5
OSV
OSV
added 2018/12/17 8:29 p.m.9 views

CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

6.5CVSS6.2AI score
Exploits0References6
OSV
OSV
added 2018/12/17 8:29 p.m.1 views

DEBIAN-CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

6.5CVSS6.4AI score0.02278EPSS
Exploits1References1
OSV
OSV
added 2018/12/17 8:29 p.m.6 views

UBUNTU-CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

6.5CVSS6.8AI score0.02278EPSS
Exploits1References6
Cvelist
Cvelist
added 2018/12/17 8:0 p.m.34 views

CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

5.7AI score0.02278EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2018/12/17 8:0 p.m.51 views

CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

6.5CVSS5.9AI score0.02278EPSS
Exploits1
Debian CVE
Debian CVE
added 2018/12/17 8:0 p.m.53 views

CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

6.5CVSS6.6AI score0.02278EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2018/12/17 12:0 a.m.9 views

PT-2018-3481 · Graphicsmagick +3 · Graphicsmagick +3

Name of the Vulnerable Software and Affected Versions: GraphicsMagick version 1.3.31 Description: The issue is related to the ReadDIBImage function in GraphicsMagick, which lacks proper input validation. This can be exploited by a remote attacker using a specially crafted dib file, potentially...

9.8CVSS6.8AI score0.0377EPSS
Exploits16References112
Tenable Nessus
Tenable Nessus
added 2018/10/15 12:0 a.m.38 views

Debian DSA-4316-1 : imagemagick - security update

This update fixes several vulnerabilities in Imagemagick, a graphical software suite. Various memory handling problems or incomplete input sanitising have been found in the coders for BMP, DIB, PICT, DCM, CUT and PSD. C Tenable Network Security, Inc. The descriptive text and package checks in thi...

8.8CVSS6.5AI score0.04479EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2018/10/04 12:0 a.m.36 views

Debian DLA-1530-1 : imagemagick security update

Several security vulnerabilities were discovered in ImageMagick, an image manipulation program, that allow remote attackers to cause denial of service application crash, excessive memory allocation, or other unspecified effects or out of bounds memory access via DCM, PWP, CALS, PICT, BMP, DIB, or...

8.8CVSS6.7AI score0.04479EPSS
Exploits3References9
OSV
OSV
added 2018/09/06 10:29 p.m.3 views

DEBIAN-CVE-2018-16645

There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image file...

6.5CVSS8.5AI score0.03209EPSS
Exploits0References1
CNVD
CNVD
added 2018/06/21 12:0 a.m.1 views

ImageMagick Out-of-Bounds Write Vulnerability

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. An out-of-bounds write vulnerability exists in ReadDIBImage and WriteDIBImage in coders/dib.c in ImageMagick 7.0.8-3 Q16. An attacker can cause an out-of-bounds write ...

8.8CVSS7.5AI score0.03295EPSS
Exploits1References1
Rows per page
Query Builder