Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:27172
HistorySep 21, 2020 - 6:39 a.m.

Arbitrary Code Execution

2020-09-2106:39:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
arbitrary code execution
graphicsmagick
writemapimage
vulnerability
segmentation violation
non-colormapped image
attacker
host os

EPSS

0.004

Percentile

73.5%

GraphicsMagick is vulnerable to arbitrary code execution. A segmentation violation in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image allows an attacker to execute arbitrary code on the host OS. This vulnerability is different from CVE-2017-11642.