Imagemagick Security Vulnerabilities
The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service (out-of-bounds memory access and crash).
6.2CVSS
5.9AI Score
0.001EPSS
vision.c in ImageMagick allows remote attackers to cause a denial of service (infinite loop) via vectors related to "too many object."
7.5CVSS
7.1AI Score
0.005EPSS
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.
5.5CVSS
5.8AI Score
0.004EPSS
ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.
5.5CVSS
5.8AI Score
0.004EPSS
The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.
5.5CVSS
5.9AI Score
0.004EPSS
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.
5.5CVSS
5.8AI Score
0.004EPSS
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.
5.5CVSS
5.8AI Score
0.004EPSS
The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.
5.5CVSS
5.8AI Score
0.004EPSS
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
5.5CVSS
5.8AI Score
0.011EPSS
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.
5.5CVSS
5.8AI Score
0.002EPSS
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.
5.5CVSS
5.8AI Score
0.011EPSS
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.
5.5CVSS
5.8AI Score
0.002EPSS
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.
5.5CVSS
5.8AI Score
0.004EPSS
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.
5.5CVSS
5.8AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.
7.8CVSS
7AI Score
0.004EPSS
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.
5.5CVSS
5.9AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.
7.8CVSS
7.1AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.
7.8CVSS
7AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
7.8CVSS
7.7AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.
7.8CVSS
7.7AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.
7.8CVSS
7.7AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.
7.8CVSS
7.7AI Score
0.004EPSS
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824.
7.8CVSS
7.7AI Score
0.004EPSS
ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
9.8CVSS
7.5AI Score
0.006EPSS
coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
8.8CVSS
8.6AI Score
0.006EPSS
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.
8.8CVSS
6.8AI Score
0.006EPSS
coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.
6.5CVSS
6.3AI Score
0.005EPSS
coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.
8.8CVSS
6.8AI Score
0.006EPSS
coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.
8.8CVSS
6.8AI Score
0.006EPSS
7.8CVSS
7.3AI Score
0.001EPSS
7.8CVSS
7.3AI Score
0.001EPSS
7.8CVSS
6.6AI Score
0.001EPSS
7.8CVSS
6.6AI Score
0.001EPSS
ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a crafted xpm file.
5.5CVSS
5.8AI Score
0.002EPSS
coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.
6.5CVSS
6.3AI Score
0.005EPSS
magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).
5.5CVSS
5.9AI Score
0.002EPSS
magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).
7.5CVSS
6.4AI Score
0.002EPSS
ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.
5.5CVSS
5.8AI Score
0.002EPSS
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions."
9.8CVSS
7.6AI Score
0.014EPSS
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
7.5CVSS
7.1AI Score
0.018EPSS
The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.
9.8CVSS
7.6AI Score
0.014EPSS
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
5.5CVSS
5.7AI Score
0.009EPSS
The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.
5.5CVSS
5.8AI Score
0.013EPSS
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
9.8CVSS
7AI Score
0.014EPSS
The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
9.8CVSS
6.7AI Score
0.023EPSS
Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).
7.5CVSS
7.1AI Score
0.021EPSS
The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).
7.5CVSS
7.1AI Score
0.018EPSS
Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).
7.5CVSS
7.1AI Score
0.012EPSS
ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).
7.5CVSS
7.1AI Score
0.017EPSS
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
9.8CVSS
8.7AI Score
0.012EPSS