Lucene search
K

584 matches found

Veracode
Veracode
added 2025/12/13 5:24 a.m.8 views

Integer Overflow

ImageMagick is vulnerable to an integer overflow. The vulnerability is due to improper validation of width and height values in the TIM image parser’s ReadTIMImage function when calculating the image size without overflow checks, which allows an attacker to supply a crafted TIM image that trigger...

7.5CVSS5.9AI score0.00439EPSS
Exploits0References3Affected Software7
SUSE CVE
SUSE CVE
added 2025/12/12 12:24 a.m.7 views

SUSE CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS7.4AI score0.00439EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-66628

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a...

7.5CVSS5.7AI score0.00439EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.5 views

ImageMagick < 7.1.2-10 Integer Overflow (GHSA-6hjr-v6g4-3fm8)

The remote Windows host has a version of ImageMagick installed that is prior to 7.1.2-10. It is, therefore, affected by an integer overflow vulnerability. ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parse...

7.5CVSS5.7AI score0.00439EPSS
Exploits0References2
NVD
NVD
added 2025/12/10 10:16 p.m.5 views

CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS0.00439EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 10:16 p.m.5 views

DEBIAN-CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS5.7AI score0.00439EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/10 10:4 p.m.35 views

CVE-2025-66628 ImageMagick is vulnerable to an Integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS0.00439EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/10 10:4 p.m.3 views

CVE-2025-66628 ImageMagick is vulnerable to an Integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS7AI score0.00439EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/10 10:4 p.m.6 views

EUVD-2025-202428

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS6.8AI score0.00439EPSS
Exploits0References3
OSV
OSV
added 2025/12/10 10:4 p.m.3 views

CVE-2025-66628 ImageMagick is vulnerable to an Integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS7.2AI score0.00439EPSS
Exploits0References4
CVE
CVE
added 2025/12/10 10:4 p.m.48 views

CVE-2025-66628

CVE-2025-66628 affects ImageMagick’s TIM image parser (ReadTIMImage in coders/tim.c). In versions up to 7.1.2-9, width/height are read as 16-bit values and image_size = 2 * width * height can overflow on 32-bit systems, causing a small heap allocation and enabling an out-of-bounds read. This is m...

7.5CVSS6.9AI score0.00439EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/12/10 10:4 p.m.5 views

CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS5.6AI score0.00439EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2025/12/10 10:4 p.m.8 views

CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS7.1AI score0.00439EPSS
Exploits0
Snyk
Snyk
added 2025/12/10 3:47 p.m.3 views

Out-of-bounds Read

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.7CVSS6.7AI score0.00439EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 3:47 p.m.2 views

GHSA-6HJR-V6G4-3FM8 ImageMagick is vulnerable to an integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

Summary The TIM PSX TIM image parser in ImageMagick contains a critical integer overflow vulnerability in the ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file header and calculates imagesize = 2 width height without checking for overflow. On 32-bit...

7.5CVSS7.2AI score0.00439EPSS
Exploits0References3
Snyk
Snyk
added 2025/12/10 3:47 p.m.2 views

Out-of-bounds Read

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.7CVSS6.7AI score0.00439EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/10 3:47 p.m.2 views

Out-of-bounds Read

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.7CVSS6.7AI score0.00439EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/10 3:47 p.m.2 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ReadTIMImage function. An attacker can access sensitive memory contents by supplying a specially crafted TIM image file with large width and height values, causing an integer overflow and subsequent out-of-boun...

8.7CVSS6.9AI score0.00439EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/12/10 3:47 p.m.9 views

ImageMagick is vulnerable to an integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

Summary The TIM PSX TIM image parser in ImageMagick contains a critical integer overflow vulnerability in the ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file header and calculates imagesize = 2 width height without checking for overflow. On 32-bit...

7.5CVSS7.4AI score0.00439EPSS
Exploits0References3Affected Software6
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 10:25 p.m.3 views

Malicious code in sonic-kuloig-tim (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9f174f222a42f8b37195fddb3ac983ab6e184fa0e30d1e2b8aa62a6708c19549 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
Rows per page
Query Builder