Imagemagick » Imagemagick : Security Vulnerabilities, CVEs, (Bypass)
coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
Max CVSS
9.8
EPSS Score
1.20%
Published
2017-03-24
Updated
2017-11-04
The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Max CVSS
7.8
EPSS Score
0.67%
Published
2017-03-03
Updated
2019-04-12
The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors.
Max CVSS
9.8
EPSS Score
1.63%
Published
2017-03-15
Updated
2018-08-04
CVE-2016-3715
Known exploited
The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to delete arbitrary files via a crafted image.
Max CVSS
5.8
EPSS Score
97.13%
Published
2016-05-05
Updated
2023-02-12
CISA KEV Added
2021-11-03
coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.
Max CVSS
8.8
EPSS Score
0.56%
Published
2017-08-07
Updated
2017-08-08
coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.
Max CVSS
8.8
EPSS Score
0.56%
Published
2017-08-07
Updated
2017-08-08
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.
Max CVSS
8.8
EPSS Score
0.56%
Published
2017-08-07
Updated
2017-08-08
coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
Max CVSS
8.8
EPSS Score
0.56%
Published
2017-08-07
Updated
2017-08-08
8 vulnerabilities found