Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/02/24 12:54 a.m.24 views

CVE-2026-25795 ImageMagick has NULL pointer dereference in ReadSFWImage after DestroyImageInfo (sfw.c)

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in ReadSFWImage coders/sfw.c, when temporary file creation fails, readinfo is destroyed before its filename member is accessed, causing a NULL pointer dereferen...

5.3CVSS0.00376EPSS
Exploits0References1
Veracode
Veracode
added 2017/08/22 12:5 a.m.34 views

Denial Of Service (DoS) Through Heap Based Buffer Overflow

ImageMagick is vulnerable to denial of service DoS attacks through heap-based buffer overflows and possibly other attacks. A malicious user can pass a SFW file to the system to cause a heap-based buffer overflow, causing the application to crash...

8.8CVSS8.6AI score0.0244EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2015/03/27 12:0 a.m.44 views

Fedora 22 : dokuwiki-0-0.24.20140929c.fc22 (2015-3079)

This update fixes CVE-2015-2172 - There's a security hole in the ACL plugins remote API component. The plugin failes to check for superuser permissions before executing ACL addition or deletion. This means everybody with permissions to call the XMLRPC API also has permissions to set up their own...

6.5CVSS6.1AI score0.06463EPSS
Exploits0References3
Prion
Prion
added 2012/09/07 10:32 a.m.14 views

Design/Logic Flaw

Untrusted search path vulnerability in Sound Forge Pro 10.0b Build 474 allows local users to gain privileges via a Trojan horse MtxParhVegasPreview.dll file in the current working directory, as demonstrated by a directory that contains a .sfw file. NOTE: some of these details are obtained from...

6.9CVSS6.9AI score0.00403EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder