Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8451 matches found

Snyk
Snykadded 2025/08/26 5:20 p.m.3 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.3 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.1 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q8-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package ar...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.3 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
OSV
OSVadded 2025/08/26 5:20 p.m.1 views

CVE-2025-55298 ImageMagick Format String Bug in InterpretImageFilename leads to arbitrary code execution

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleString without proper...

7.5CVSS7.7AI score0.01005EPSS
Exploits1References6
CVE
CVEadded 2025/08/26 5:20 p.m.34 views

CVE-2025-55298

ImageMagick vulnerability CVE-2025-55298 is caused by a format string bug in InterpretImageFilename where un-sanitized user input is passed to FormatLocaleString, enabling potential heap overflow or remote code execution due to memory overwrite. Affected releases before patches include ImageMagic...

8.8CVSS7.6AI score0.01005EPSS
Exploits1References4Affected Software1
Snyk
Snykadded 2025/08/26 5:20 p.m.2 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.2 views

Use of Externally-Controlled Format String

Overview Affected versions of this package are vulnerable to Use of Externally-Controlled Format String via the InterpretImageFilename function, where user input is directly passed to FormatLocaleString without proper sanitization. An attacker can execute arbitrary code or cause a heap-based buff...

8.8CVSS7.9AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.3 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.5 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.3 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.3 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Snyk
Snykadded 2025/08/26 5:20 p.m.2 views

Use of Externally-Controlled Format String

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.8CVSS7.7AI score0.01005EPSS
Exploits1References2
Github Security Blog
Github Security Blogadded 2025/08/26 3:29 p.m.7 views

ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution

Summary A format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleString without proper sanitization. An attacker can overwrite arbitrary memory regions, enabling a wide range of attacks from heap overflow to remote code...

8.8CVSS8AI score0.01005EPSS
Exploits1References6Affected Software18
CNNVD
CNNVDadded 2025/08/26 12:0 a.m.0 views

ImageMagick 安全漏洞

ImageMagick is a suite of open source image processing software from ImageMagick Open Source. It can read, convert or write images in a variety of formats. A security vulnerability exists in ImageMagick versions prior to 6.9.13-28 and 7.1.2-2, which stems from a format string vulnerability that...

8.8CVSS7.6AI score0.01005EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2025/08/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2015-8106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Format string vulnerability in the CmdKeywords function in funct1.c in latex2rtf before 2.3.10 allows remote attackers to execute arbitrary code via format stri...

9.3CVSS7.9AI score0.00877EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2014-6262

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core before 4.2.5 and other products, allow remote attackers to execut...

7.5CVSS7.9AI score0.19687EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2014-8625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple format string vulnerabilities in the parseerrormsg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of service...

6.8CVSS6AI score0.02462EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/08/22 4:35 p.m.3 views

CVE-2011-10029

Solar FTP Server fails to properly handle format strings passed to the USER command. When a specially crafted string containing format specifiers is sent, the server crashes due to a read access violation in the output1 function of sfsservice.exe. This results in a denial of service DoS condition...

8.7CVSS7AI score0.48844EPSS
Exploits0References1
CVE
CVEadded 2025/08/20 3:40 p.m.10 views

CVE-2011-10029

CVE-2011-10029 affects Solar FTP Server (

8.7CVSS6.3AI score0.48844EPSS
Exploits0References5
Rows per page
Query Builder