9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.9 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.04 Low
EPSS
Percentile
92.0%
It was discovered that ImageMagick incorrectly handled certain malformed
image files. If a user or automated system using ImageMagick were tricked
into opening a specially crafted image, an attacker could exploit this to
cause a denial of service or possibly execute code with the privileges of
the user invoking the program.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 18.04 | noarch | imagemagick | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-6-common | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-6-doc | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-6.q16 | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-6.q16-dbgsym | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-6.q16hdri | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-6.q16hdri-dbgsym | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-common | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | imagemagick-doc | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
Ubuntu | 18.04 | noarch | libimage-magick-perl | < 8:6.9.7.4+dfsg-16ubuntu6.2 | UNKNOWN |
ubuntu.com/security/CVE-2017-1000445
ubuntu.com/security/CVE-2017-1000476
ubuntu.com/security/CVE-2017-10995
ubuntu.com/security/CVE-2017-11352
ubuntu.com/security/CVE-2017-11533
ubuntu.com/security/CVE-2017-11535
ubuntu.com/security/CVE-2017-11537
ubuntu.com/security/CVE-2017-11639
ubuntu.com/security/CVE-2017-11640
ubuntu.com/security/CVE-2017-12140
ubuntu.com/security/CVE-2017-12418
ubuntu.com/security/CVE-2017-12429
ubuntu.com/security/CVE-2017-12430
ubuntu.com/security/CVE-2017-12431
ubuntu.com/security/CVE-2017-12432
ubuntu.com/security/CVE-2017-12433
ubuntu.com/security/CVE-2017-12435
ubuntu.com/security/CVE-2017-12563
ubuntu.com/security/CVE-2017-12587
ubuntu.com/security/CVE-2017-12640
ubuntu.com/security/CVE-2017-12643
ubuntu.com/security/CVE-2017-12644
ubuntu.com/security/CVE-2017-12670
ubuntu.com/security/CVE-2017-12674
ubuntu.com/security/CVE-2017-12691
ubuntu.com/security/CVE-2017-12692
ubuntu.com/security/CVE-2017-12693
ubuntu.com/security/CVE-2017-12875
ubuntu.com/security/CVE-2017-12877
ubuntu.com/security/CVE-2017-12983
ubuntu.com/security/CVE-2017-13058
ubuntu.com/security/CVE-2017-13059
ubuntu.com/security/CVE-2017-13060
ubuntu.com/security/CVE-2017-13061
ubuntu.com/security/CVE-2017-13062
ubuntu.com/security/CVE-2017-13131
ubuntu.com/security/CVE-2017-13134
ubuntu.com/security/CVE-2017-13139
ubuntu.com/security/CVE-2017-13142
ubuntu.com/security/CVE-2017-13143
ubuntu.com/security/CVE-2017-13144
ubuntu.com/security/CVE-2017-13145
ubuntu.com/security/CVE-2017-13758
ubuntu.com/security/CVE-2017-13768
ubuntu.com/security/CVE-2017-13769
ubuntu.com/security/CVE-2017-14060
ubuntu.com/security/CVE-2017-14172
ubuntu.com/security/CVE-2017-14173
ubuntu.com/security/CVE-2017-14174
ubuntu.com/security/CVE-2017-14175
ubuntu.com/security/CVE-2017-14224
ubuntu.com/security/CVE-2017-14249
ubuntu.com/security/CVE-2017-14325
ubuntu.com/security/CVE-2017-14326
ubuntu.com/security/CVE-2017-14341
ubuntu.com/security/CVE-2017-14342
ubuntu.com/security/CVE-2017-14343
ubuntu.com/security/CVE-2017-14400
ubuntu.com/security/CVE-2017-14505
ubuntu.com/security/CVE-2017-14531
ubuntu.com/security/CVE-2017-14532
ubuntu.com/security/CVE-2017-14533
ubuntu.com/security/CVE-2017-14607
ubuntu.com/security/CVE-2017-14624
ubuntu.com/security/CVE-2017-14625
ubuntu.com/security/CVE-2017-14626
ubuntu.com/security/CVE-2017-14682
ubuntu.com/security/CVE-2017-14684
ubuntu.com/security/CVE-2017-14739
ubuntu.com/security/CVE-2017-14741
ubuntu.com/security/CVE-2017-14989
ubuntu.com/security/CVE-2017-15015
ubuntu.com/security/CVE-2017-15016
ubuntu.com/security/CVE-2017-15017
ubuntu.com/security/CVE-2017-15032
ubuntu.com/security/CVE-2017-15033
ubuntu.com/security/CVE-2017-15217
ubuntu.com/security/CVE-2017-15218
ubuntu.com/security/CVE-2017-15277
ubuntu.com/security/CVE-2017-15281
ubuntu.com/security/CVE-2017-16546
ubuntu.com/security/CVE-2017-17499
ubuntu.com/security/CVE-2017-17504
ubuntu.com/security/CVE-2017-17680
ubuntu.com/security/CVE-2017-17681
ubuntu.com/security/CVE-2017-17682
ubuntu.com/security/CVE-2017-17879
ubuntu.com/security/CVE-2017-17881
ubuntu.com/security/CVE-2017-17882
ubuntu.com/security/CVE-2017-17884
ubuntu.com/security/CVE-2017-17885
ubuntu.com/security/CVE-2017-17886
ubuntu.com/security/CVE-2017-17887
ubuntu.com/security/CVE-2017-17914
ubuntu.com/security/CVE-2017-17934
ubuntu.com/security/CVE-2017-18008
ubuntu.com/security/CVE-2017-18022
ubuntu.com/security/CVE-2017-18027
ubuntu.com/security/CVE-2017-18028
ubuntu.com/security/CVE-2017-18029
ubuntu.com/security/CVE-2017-18209
ubuntu.com/security/CVE-2017-18211
ubuntu.com/security/CVE-2017-18251
ubuntu.com/security/CVE-2017-18252
ubuntu.com/security/CVE-2017-18254
ubuntu.com/security/CVE-2017-18271
ubuntu.com/security/CVE-2017-18273
ubuntu.com/security/CVE-2018-10177
ubuntu.com/security/CVE-2018-10804
ubuntu.com/security/CVE-2018-10805
ubuntu.com/security/CVE-2018-11251
ubuntu.com/security/CVE-2018-11625
ubuntu.com/security/CVE-2018-11655
ubuntu.com/security/CVE-2018-11656
ubuntu.com/security/CVE-2018-5246
ubuntu.com/security/CVE-2018-5247
ubuntu.com/security/CVE-2018-5248
ubuntu.com/security/CVE-2018-5357
ubuntu.com/security/CVE-2018-5358
ubuntu.com/security/CVE-2018-6405
ubuntu.com/security/CVE-2018-7443
ubuntu.com/security/CVE-2018-8804
ubuntu.com/security/CVE-2018-8960
ubuntu.com/security/CVE-2018-9133
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.9 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.04 Low
EPSS
Percentile
92.0%