Lucene search
K

92 matches found

UbuntuCve
UbuntuCve
added 2018/06/20 12:0 a.m.33 views

CVE-2018-12599

In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file...

8.8CVSS6.9AI score0.03295EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/09 12:0 a.m.43 views

Amazon Linux AMI : GraphicsMagick (ALAS-2018-966)

Memory information disclosure in DescribeImage function in magick/describe.c GraphicsMagick is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containin...

9.8CVSS7.5AI score0.13679EPSS
Exploits5References17
CNVD
CNVD
added 2018/01/15 12:0 a.m.2 views

GraphicsMagick 'ReadBMPImage' function infinite loop vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the 'ReadBMPImage' function of the coders/bmp.c file in GraphicsMagick version 1.3.27. A remote attacker can exploit this...

6.5CVSS6.9AI score0.01938EPSS
Exploits1References1
OSV
OSV
added 2018/01/14 2:29 a.m.11 views

CVE-2018-5685

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function coders/bmp.c. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value...

6.5CVSS7AI score
Exploits0References5
Prion
Prion
added 2018/01/14 2:29 a.m.16 views

Code injection

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function coders/bmp.c. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value...

4.3CVSS6.2AI score0.01938EPSS
Exploits1References5Affected Software2
OSV
OSV
added 2018/01/14 2:29 a.m.4 views

UBUNTU-CVE-2018-5685

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function coders/bmp.c. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value...

6.5CVSS7AI score0.01938EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2018/01/14 2:29 a.m.35 views

CVE-2018-5685

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function coders/bmp.c. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value...

6.5CVSS6.9AI score0.01938EPSS
Exploits1References4
Cvelist
Cvelist
added 2018/01/14 2:0 a.m.23 views

CVE-2018-5685

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function coders/bmp.c. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value...

7AI score0.01938EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2018/01/14 2:0 a.m.31 views

CVE-2018-5685

In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function coders/bmp.c. Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value...

6.5CVSS7.2AI score0.01938EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2017/09/15 12:0 a.m.14 views

The vulnerability of the ReadBMPImage function (coders/bmp.c) in the console-based image editing tool ImageMagick allows a hacker to cause a service failure.

The vulnerability of the ReadBMPImage function coder/bmp.c in the console-based graphic editor ImageMagick is related to resource management errors. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure memory consumption through a specially created B...

7.1CVSS7.1AI score0.0291EPSS
Exploits1References11Affected Software3
Veracode
Veracode
added 2017/09/04 8:13 a.m.21 views

Denial Of Service (DoS)

ImageMagick is vulnerable to denial of service DoS attacks. The attacks can be launched because the ReadBMPImage function in coders/bmp.c does not properly handle malicious BMP files, causing memory consumption...

6.5CVSS7.3AI score0.0291EPSS
Exploits1References6Affected Software1
CNVD
CNVD
added 2017/09/02 12:0 a.m.5 views

ImageMagick Denial of Service Vulnerability (CNVD-2017-24370)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in ReadBMPImage in coders/bmp.c in ImageMagick version 7.0.6-6, which can be...

7.1CVSS7.2AI score0.0291EPSS
Exploits1References1
OSV
OSV
added 2017/09/01 9:29 p.m.22 views

CVE-2017-12693

The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service memory consumption via a crafted BMP file...

6.5CVSS6.4AI score
Exploits0References5
NVD
NVD
added 2017/09/01 9:29 p.m.12 views

CVE-2017-12693

The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service memory consumption via a crafted BMP file...

7.1CVSS6.8AI score0.0291EPSS
Exploits1References5
Cvelist
Cvelist
added 2017/09/01 9:0 p.m.19 views

CVE-2017-12693

The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service memory consumption via a crafted BMP file...

6.8AI score0.0291EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2017/09/01 12:0 a.m.21 views

CVE-2017-12693

The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service memory consumption via a crafted BMP file...

7.1CVSS6.9AI score0.0291EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/06/07 12:0 a.m.44 views

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:1489-1)

This update for ImageMagick fixes the following issues: Security issues fixed : - CVE-2017-6502: Possible file-descriptor leak in libmagickcore that could be triggered via a specially crafted webp file bsc1028075. - CVE-2017-7943: The ReadSVGImage function in svg.c allowed remote attackers to...

7.5CVSS6.5AI score0.03569EPSS
Exploits2References82
BDU FSTEC
BDU FSTEC
added 2017/05/15 12:0 a.m.8 views

The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure

The vulnerability of the ReadBMPImage function in the ImageMagick console graphics editor’s bmp.c file arises from the execution of an operation outside the buffer boundaries in memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure loss of access to memory b...

4.3CVSS7.3AI score0.01935EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2017/05/09 2:20 p.m.27 views

CVE-2017-8830

In ImageMagick 7.0.5-6, the ReadBMPImage function in bmp.c:1379 allows attackers to cause a denial of service memory leak via a crafted file...

6.5CVSS4.6AI score0.01502EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/05/09 1:49 p.m.20 views

CVE-2017-8354

In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows attackers to cause a denial of service memory leak via a crafted file...

6.5CVSS4.6AI score0.01935EPSS
Exploits0References1
Rows per page
Query Builder