Writeup Exploits
62,850 exploits tracked across all sources.
ImageMagick 7.0.7-12 Q16 - Denial of Service in ReadDDSInfo
ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds.c, which allows attackers to cause a denial of service.
CVSS 6.5
ImageMagick < 6.9.9-15 - Denial of Service via Null Pointer Dereference
ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service
CVSS 6.5
ImageMagick < 6.9.6-5 - Denial of Service via NULL Pointer Dereference in TIFF Coder
coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted image.
CVSS 6.5
ImageMagick <6.9.6-4, <7.0.3-6 - Buffer Overflow
Heap overflow in the WaveletDenoiseImage function in MagickCore/fx.c in ImageMagick before 6.9.6-4 and 7.x before 7.0.3-6 allows remote attackers to cause a denial of service (crash) via a crafted image.
CVSS 5.5
ImageMagick <7.0.3.8 - Memory Corruption
The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8862.
CVSS 8.8
ImageMagick <7.0.3.3 - Memory Corruption
The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure.
CVSS 8.8
ImageMagick 7.0.3.0 - Denial of Service via IsPixelMonochrome Out-of-bounds Read
The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.0 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted file. NOTE: the vendor says "This is a Q64 issue and we do not support Q64."
CVSS 5.5
ImageMagick <7.0.3-1 - Memory Corruption
The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure.
CVSS 8.8
ImageMagick 7.0.3-2 - Use-After-Free in magick/attribute.c
magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service (use-after-free) via a crafted file.
CVSS 5.5
ImageMagick < 6.9.6-0 - Out-of-bounds Read in MagickCore/profile.c
MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVSS 6.5
ImageMagick < 6.9.4-9 - Denial of Service via RGF Image Conversion
coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause a denial of service (assertion failure) by converting an image to rgf format.
CVSS 6.5
ImageMagick - Out-of-bounds Write in PSD Coder
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
CVSS 6.5
ImageMagick < 6.9.4-7 - Denial of Service via Crafted PDB File
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Crafted Profile
magick/profile.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted profile.
CVSS 6.5
ImageMagick < 6.9.4-0 - Out-of-bounds Write in PSD File Parser
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PSD file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Out-of-bounds Read in Generic Decoder
The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Crafted WPG File
The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Crafted PSD File
coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVSS 6.5
ImageMagick < 7.0.1-0 - Out-of-bounds Write via Crafted PDB File
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Quantum Handling
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Quantum Handling
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Quantum Handling
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Crafted XCF File
coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Crafted XCF File
coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.
CVSS 6.5
ImageMagick < 6.9.4-0 - Denial of Service via Crafted VIFF File
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file.
CVSS 6.5
By Source