Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-04-20 CVE-2016-7520 Out-of-bounds Read vulnerability in Imagemagick
Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted HDR file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-20 CVE-2016-7518 Out-of-bounds Read vulnerability in Imagemagick
The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-20 CVE-2016-7517 Out-of-bounds Read vulnerability in Imagemagick
The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PICT file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-20 CVE-2016-7516 Out-of-bounds Read vulnerability in Imagemagick
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted VIFF file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-20 CVE-2016-7514 Out-of-bounds Read vulnerability in Imagemagick
The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-20 CVE-2016-7513 Numeric Errors vulnerability in Imagemagick
Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors.
network
low complexity
imagemagick CWE-189
6.5
2017-04-20 CVE-2016-5010 Out-of-bounds Read vulnerability in Imagemagick
coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF file.
network
low complexity
imagemagick CWE-125
6.5
2017-04-20 CVE-2016-4844 Information Exposure vulnerability in Cybozu Mailwise
Cybozu Mailwise before 5.4.0 allows remote attackers to conduct clickjacking attacks.
network
low complexity
cybozu CWE-200
4.3
2017-04-20 CVE-2016-4843 Information Exposure vulnerability in Cybozu Mailwise
Cybozu Mailwise before 5.4.0 allows remote attackers to obtain sensitive cookie information.
network
low complexity
cybozu CWE-200
6.5
2017-04-20 CVE-2016-4842 Information Exposure vulnerability in Cybozu Mailwise
Cybozu Mailwise before 5.4.0 allows remote attackers to obtain information on when an email is read.
network
low complexity
cybozu CWE-200
4.3