NVD - Results

Sort results by:

Search Results (Refine Search)

Search Parameters:

Results Type: Overview
Keyword (text search): cpe:2.3:a:imagemagick:imagemagick:7.0.5-7:*:*:*:*:*:*:*
CPE Name Search: true

There are 134 matching records.

Displaying matches 121 through 134.

Vuln ID	Summary	CVSS Severity
CVE-2017-11352	In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144. Published: July 17, 2017; 9:18:21 AM -0400	V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2017-9501	In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file. Published: June 07, 2017; 10:29:00 AM -0400	V3.0: 6.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2017-9499	In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function SetPixelChannelAttributes, which allows attackers to cause a denial of service via a crafted file. Published: June 07, 2017; 10:29:00 AM -0400	V3.0: 6.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2017-9142	In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the WriteBlob function in MagickCore/blob.c because of missing checks in the ReadOneJNGImage function in coders/png.c. Published: May 22, 2017; 10:29:00 AM -0400	V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2017-9141	In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missing checks in the ReadDDSImage function in coders/dds.c. Published: May 22, 2017; 10:29:00 AM -0400	V3.1: 6.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2014-9907	coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file. Published: April 19, 2017; 10:59:00 AM -0400	V3.0: 6.5 MEDIUM V2.0: 4.3 MEDIUM
CVE-2017-5511	coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow. Published: March 24, 2017; 11:59:01 AM -0400	V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH
CVE-2017-5510	coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write. Published: March 24, 2017; 11:59:01 AM -0400	V3.1: 7.8 HIGH V2.0: 6.8 MEDIUM
CVE-2017-5509	coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write. Published: March 24, 2017; 11:59:01 AM -0400	V3.1: 7.8 HIGH V2.0: 6.8 MEDIUM
CVE-2017-5506	Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file. Published: March 24, 2017; 11:59:00 AM -0400	V3.1: 7.8 HIGH V2.0: 6.8 MEDIUM
CVE-2016-10146	Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors. Published: March 24, 2017; 11:59:00 AM -0400	V3.0: 7.5 HIGH V2.0: 7.8 HIGH
CVE-2016-10145	Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy. Published: March 24, 2017; 11:59:00 AM -0400	V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH
CVE-2016-10144	coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check. Published: March 24, 2017; 11:59:00 AM -0400	V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH
CVE-2007-1667	Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow. Published: March 24, 2007; 5:19:00 PM -0400	V3.x:(not available) V2.0: 9.3 HIGH