CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

4.5CVSS7.2AI score0.00065EPSS

Exploits0References4

OSV•added 2025/03/07 6:15 a.m.•1 views

DEBIAN-CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

9.8CVSS5.1AI score0.00065EPSS

Exploits0References1

OSV•added 2025/03/07 6:15 a.m.•0 views

UBUNTU-CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

4.5CVSS5.9AI score0.00065EPSS

Exploits0References6

SUSE CVE•added 2023/02/15 4:58 a.m.•2 views

SUSE CVE-2016-7533

The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted WPG file...

6.5CVSS6.6AI score0.01001EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 4:39 a.m.•1 views

SUSE CVE-2017-14342

ImageMagick 7.0.6-6 has a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c via a crafted wpg image file...

5.3CVSS8.9AI score0.00154EPSS

Exploits1References8

SUSE CVE•added 2023/02/15 4:37 a.m.•1 views

SUSE CVE-2017-16545

The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3.26 does not properly validate colormapped images, which allows remote attackers to cause a denial of service ImportIndexQuantumType invalid write and application crash or possibly have unspecified other impact via a malformed WPG ima...

8.8CVSS7.6AI score0.0046EPSS

Exploits0References8

ossfuzz•added 2020/05/01 9:15 a.m.•17 views

graphicsmagick:coder_WPG_fuzzer: Heap-buffer-overflow in InsertRow

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed Report: https://oss-fuzz.com/testcase?key=4916003928801280 Project: graphicsmagick Fuzzing Engine: afl Fuzz Target: coderWPGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 2 Crash Addres...

6.8AI score

Exploits0Affected Software1

ossfuzz•added 2020/01/13 10:9 a.m.•14 views

graphicsmagick:enhance_fuzzer: Heap-buffer-overflow in InsertRow

Detailed Report: https://oss-fuzz.com/testcase?key=5758629114544128 Project: graphicsmagick Fuzzing Engine: libFuzzer Fuzz Target: enhancefuzzer Job Type: libfuzzerasangraphicsmagick Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 2 Crash Address: 0x7f3759afae04 Crash State: InsertRow...

6.8AI score

Exploits0Affected Software1

Veracode•added 2019/06/21 6:27 a.m.•24 views

Denial Of Service (DoS)

ImageMagick is susceptible to denial of service DoS. The attack is possible due to the lack of proper validation of input WPG image in the ReadWPGImage function in coders/wpg.c, allowing an attacker to trigger ImportIndexQuantumType invalid write or crash the application...

8.8CVSS8.1AI score0.0046EPSS

Exploits0References7Affected Software2

ossfuzz•added 2018/08/04 4:19 a.m.•14 views

imagemagick/encoder_wpg_fuzzer: Use-of-uninitialized-value in SetPixelViaPixelInfo

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5701749124890624 Project: imagemagick Fuzzer: libFuzzerimagemagickencoderwpgfuzzer Fuzz target binary: encoderwpgfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

6.8AI score

Exploits0Affected Software1

ossfuzz•added 2018/04/17 7:32 a.m.•17 views

graphicsmagick/coder_WPG_fuzzer: Use-of-uninitialized-value in ReadWPGImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=6589339552186368 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderWPGfuzzer Fuzz target binary: coderWPGfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

6.8AI score

Exploits0Affected Software1

ossfuzz•added 2018/04/13 7:17 a.m.•17 views

graphicsmagick/coder_WPG_fuzzer: Unknown signal in InsertRow

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=4875204321869824 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderWPGfuzzer Fuzz target binary: coderWPGfuzzer Job Type: libfuzzerubsangraphicsmagick Platform Id: linux Crash Type:...

6.7AI score

Exploits0Affected Software1

OSV•added 2017/12/20 11:23 a.m.•4 views

SUSE-SU-2017:3378-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2017-14607: out of bounds read flaw related to ReadTIFFImagehas could possibly disclose potentially sensitive memory bsc1059778 CVE-2017-11640: NULL pointer deref in WritePTIFImage in coders/tiff.c bsc1050632 CVE-2017-14342: a memory...

8.8CVSS7.6AI score0.01676EPSS

Exploits10References53

CNVD•added 2017/12/15 12:0 a.m.•2 views

ImageMagick ExtractPostscript function macrocycle vulnerability

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A macrocycle vulnerability exists in the ExtractPostscript function in coders/wpg.c in ImageMagick 7.0.7-12 Q16. An attacker can exploit this vulnerability to cause a...

7.1CVSS6.6AI score0.01712EPSS

Exploits1References1

Prion•added 2017/12/14 6:29 a.m.•24 views

Design/Logic Flaw

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted wpg image file that triggers a ReadWPGImage call...

7.1CVSS6.9AI score0.01712EPSS

Exploits1References6Affected Software3

OSV•added 2017/12/14 6:29 a.m.•1 views

DEBIAN-CVE-2017-17682

6.5CVSS6.7AI score0.01712EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by