Vulnerabilities > Imagemagick > Imagemagick > 6.3.2.2

DATE CVE VULNERABILITY TITLE RISK
2023-05-30 CVE-2023-34152 OS Command Injection vulnerability in multiple products
A vulnerability was found in ImageMagick.
network
low complexity
imagemagick fedoraproject redhat CWE-78
critical
 9.8
9.8
2023-05-30 CVE-2023-34153 Command Injection vulnerability in multiple products
A vulnerability was found in ImageMagick.
local
low complexity
imagemagick fedoraproject redhat CWE-77
7.8
7.8
2023-04-12 CVE-2023-1906 Out-of-bounds Write vulnerability in multiple products
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c.
local
low complexity
imagemagick fedoraproject CWE-787
5.5
5.5
2023-03-23 CVE-2023-1289 Improper Input Validation vulnerability in multiple products
A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault.
local
low complexity
imagemagick fedoraproject redhat CWE-20
5.5
5.5
2022-09-19 CVE-2022-3213 Out-of-bounds Write vulnerability in multiple products
A heap buffer overflow issue was found in ImageMagick.
local
low complexity
imagemagick fedoraproject CWE-787
5.5
5.5
2022-08-29 CVE-2022-0284 Out-of-bounds Read vulnerability in Imagemagick
A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'.
local
low complexity
imagemagick CWE-125
7.1
7.1
2022-08-29 CVE-2022-1115 Out-of-bounds Write vulnerability in Imagemagick
A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file.
local
low complexity
imagemagick CWE-787
5.5
5.5
2022-08-25 CVE-2021-20224 Integer Overflow or Wraparound vulnerability in Imagemagick
An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c.
local
low complexity
imagemagick CWE-190
5.5
5.5
2022-08-10 CVE-2022-2719 Reachable Assertion vulnerability in multiple products
In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list.
local
low complexity
fedoraproject imagemagick CWE-617
5.5
5.5
2022-06-16 CVE-2022-32545 Integer Overflow or Wraparound vulnerability in multiple products
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed.
local
low complexity
imagemagick redhat fedoraproject CWE-190
7.8
7.8