Vulnerabilities > Imagemagick

DATE CVE VULNERABILITY TITLE RISK
2021-09-13 CVE-2021-39212 Exposure of Resource to Wrong Sphere vulnerability in Imagemagick
ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications.
local
low complexity
imagemagick CWE-668
3.6
2021-06-25 CVE-2021-34183 Memory Leak vulnerability in Imagemagick 7.0.1114
ImageMagick 7.0.11-14 has a memory leak in AcquireSemaphoreMemory in semaphore.c and AcquireMagickMemory in memory.c.
network
low complexity
imagemagick CWE-401
5.0
2021-05-14 CVE-2020-27769 Integer Overflow or Wraparound vulnerability in multiple products
In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c.
4.3
2021-05-11 CVE-2021-20309 Divide By Zero vulnerability in Imagemagick
A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image file submitted to an application using ImageMagick.
network
low complexity
imagemagick CWE-369
7.8
2021-05-11 CVE-2021-20310 Divide By Zero vulnerability in Imagemagick
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero ConvertXYZToJzazbz() of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick.
network
low complexity
imagemagick CWE-369
7.8
2021-05-11 CVE-2021-20311 Divide By Zero vulnerability in Imagemagick
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick.
network
low complexity
imagemagick CWE-369
7.8
2021-05-11 CVE-2021-20312 Integer Overflow or Wraparound vulnerability in Imagemagick
A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick.
network
low complexity
imagemagick CWE-190
7.8
2021-05-11 CVE-2021-20313 Information Exposure vulnerability in Imagemagick
A flaw was found in ImageMagick in versions before 7.0.11.
network
low complexity
imagemagick CWE-200
5.0
2021-03-26 CVE-2020-27829 Heap-based Buffer Overflow vulnerability in Imagemagick
A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick before 7.0.10-45.
4.3
2021-03-09 CVE-2021-20246 Divide By Zero vulnerability in multiple products
A flaw was found in ImageMagick in MagickCore/resample.c.
7.1