CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Imagemagick » Imagemagick » * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:a:imagemagick:imagemagick:-:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2016-10062 388 DoS 2017-03-02 2017-11-04
4.3
None Remote Medium Not required None None Partial
The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
2 CVE-2016-7538 787 DoS 2017-04-20 2020-10-14
4.3
None Remote Medium Not required None None Partial
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
3 CVE-2016-7537 125 DoS 2017-04-19 2020-11-16
4.3
None Remote Medium Not required None None Partial
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.
4 CVE-2016-7536 20 DoS 2017-04-20 2020-11-16
4.3
None Remote Medium Not required None None Partial
magick/profile.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted profile.
5 CVE-2016-7535 787 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PSD file.
6 CVE-2016-7534 125 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file.
7 CVE-2016-7533 125 DoS 2017-04-19 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file.
8 CVE-2016-7532 125 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
9 CVE-2016-7531 787 DoS 2017-04-19 2017-05-09
4.3
None Remote Medium Not required None None Partial
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.
10 CVE-2016-7530 369 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
11 CVE-2016-7529 125 DoS 2017-04-19 2017-05-09
4.3
None Remote Medium Not required None None Partial
coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.
12 CVE-2016-7528 125 DoS 2017-04-19 2020-11-16
4.3
None Remote Medium Not required None None Partial
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file.
13 CVE-2016-7527 125 DoS 2017-04-20 2020-11-16
4.3
None Remote Medium Not required None None Partial
coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
14 CVE-2016-7526 787 DoS 2017-04-20 2020-11-16
4.3
None Remote Medium Not required None None Partial
coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
15 CVE-2016-7525 125 DoS Overflow 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
16 CVE-2016-7524 125 DoS 2020-02-06 2020-02-10
4.3
None Remote Medium Not required None None Partial
coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
17 CVE-2016-7523 125 DoS 2020-02-06 2020-02-10
4.3
None Remote Medium Not required None None Partial
coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
18 CVE-2016-7522 125 DoS 2017-04-19 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
19 CVE-2016-7521 125 DoS Overflow 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
20 CVE-2016-7520 125 DoS Overflow 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.
21 CVE-2016-7519 125 DoS 2017-04-19 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
22 CVE-2016-7518 125 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file.
23 CVE-2016-7517 125 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PICT file.
24 CVE-2016-7516 125 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted VIFF file.
25 CVE-2016-7515 125 DoS 2017-04-19 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels.
26 CVE-2016-7514 125 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
27 CVE-2016-7513 189 DoS 2017-04-20 2017-05-09
4.3
None Remote Medium Not required None None Partial
Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors.
28 CVE-2014-9854 399 DoS 2017-03-17 2018-10-30
5.0
None Remote Low Not required None None Partial
coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image."
29 CVE-2014-9853 399 DoS 2017-03-17 2018-10-30
4.3
None Remote Medium Not required None None Partial
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.
30 CVE-2014-9852 913 2017-03-17 2018-10-30
7.5
None Remote Low Not required Partial Partial Partial
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
31 CVE-2014-9848 399 DoS 2017-03-20 2018-10-30
5.0
None Remote Low Not required None None Partial
Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).
32 CVE-2014-9829 125 DoS 2017-04-05 2017-05-09
4.3
None Remote Medium Not required None None Partial
coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.
33 CVE-2014-9826 388 2017-03-30 2017-04-04
7.5
None Remote Low Not required Partial Partial Partial
ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
34 CVE-2014-9825 119 Overflow 2017-03-30 2017-04-10
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824.
35 CVE-2014-9824 119 Overflow 2017-03-30 2017-04-06
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.
36 CVE-2014-9823 119 Overflow 2017-03-30 2017-04-06
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.
37 CVE-2014-9822 119 Overflow 2017-03-30 2017-04-04
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.
38 CVE-2014-9821 119 Overflow 2017-03-30 2017-04-04
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
39 CVE-2014-9820 119 Overflow 2017-03-30 2017-04-04
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.
40 CVE-2014-9819 119 Overflow 2017-03-30 2017-04-04
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.
41 CVE-2014-9818 125 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.
42 CVE-2014-9817 119 Overflow 2017-03-30 2017-04-04
6.8
None Remote Medium Not required Partial Partial Partial
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.
43 CVE-2014-9816 125 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.
44 CVE-2014-9815 20 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.
45 CVE-2014-9814 476 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.
46 CVE-2014-9813 20 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.
47 CVE-2014-9812 476 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.
48 CVE-2014-9811 20 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
49 CVE-2014-9810 20 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.
50 CVE-2014-9809 20 DoS 2017-03-30 2017-04-04
4.3
None Remote Medium Not required None None Partial
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.
Total number of vulnerabilities : 55   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.