Vulnerabilities > Imagemagick > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-20 | CVE-2020-19667 | Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow and unconditional jump in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7. | 7.8 |
| 2020-06-07 | CVE-2020-13902 | Out-of-bounds Read vulnerability in Imagemagick ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding. | 7.1 |
| 2020-02-17 | CVE-2014-1947 | Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick 6.5.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of layers in a PSD image, involving the L%02ld string, a different vulnerability than CVE-2014-2030. | 7.8 |
| 2020-02-06 | CVE-2014-2030 | Out-of-bounds Write vulnerability in multiple products Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vulnerability than CVE-2014-1947. | 8.8 |
| 2020-02-06 | CVE-2014-1958 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in the DecodePSDPixels function in coders/psd.c in ImageMagick before 6.8.8-5 might allow remote attackers to execute arbitrary code via a crafted PSD image, involving the L%06ld string, a different vulnerability than CVE-2014-2030. | 8.8 |
| 2019-10-14 | CVE-2019-17547 | Use After Free vulnerability in Imagemagick In ImageMagick before 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free. | 8.8 |
| 2019-10-14 | CVE-2019-17541 | Use After Free vulnerability in Imagemagick ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c. | 8.8 |
| 2019-10-14 | CVE-2019-17540 | Out-of-bounds Write vulnerability in multiple products ImageMagick before 7.0.8-54 has a heap-based buffer overflow in ReadPSInfo in coders/ps.c. | 8.8 |
| 2019-08-18 | CVE-2019-15140 | Use After Free vulnerability in Imagemagick 7.0.843 coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c. | 8.8 |
| 2019-07-07 | CVE-2019-13391 | Out-of-bounds Read vulnerability in Imagemagick 7.0.850 In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels. | 8.8 |