U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. VulnerabilitiesSearch And Statistics

Search Results (Refine Search)

Search Parameters:
  • Keyword (text search): ImageMagick
There are 665 matching records.
Displaying matches 461 through 480.
Vuln ID Summary CVSS Severity
CVE-2015-8959

coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS file.

Published: April 20, 2017; 2:59:00 PM -0400 		V3.1: 6.5 MEDIUM
 V2.0: 7.1 HIGH
CVE-2015-8958

coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted SUN file.

Published: April 20, 2017; 2:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2015-8957

Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file.

Published: April 20, 2017; 2:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7537

MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.1: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7533

The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7531

MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7529

coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7528

The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.1: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7522

The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7519

The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2016-7515

The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2014-9907

coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file.

Published: April 19, 2017; 10:59:00 AM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2017-7943

The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.

Published: April 18, 2017; 3:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2017-7942

The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.

Published: April 18, 2017; 3:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2017-7941

The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.

Published: April 18, 2017; 3:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2014-9837

coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.

Published: April 11, 2017; 3:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2014-8716

The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service (out-of-bounds memory access and crash).

Published: April 11, 2017; 3:59:00 PM -0400 		V3.0: 6.2 MEDIUM
 V2.0: 2.1 LOW
CVE-2014-8562

DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read).

Published: April 11, 2017; 3:59:00 PM -0400 		V3.0: 5.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2014-8355

PCX parser code in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read).

Published: April 11, 2017; 3:59:00 PM -0400 		V3.0: 5.5 MEDIUM
 V2.0: 4.3 MEDIUM
CVE-2014-8354

The HorizontalFilter function in resize.c in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.

Published: April 11, 2017; 3:59:00 PM -0400 		V3.0: 6.5 MEDIUM
 V2.0: 4.3 MEDIUM