| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-5118 | 10.0 |
The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename.
|
01-08-2023 - 18:21 | 10-06-2016 - 15:59 | |
| CVE-2015-8896 | 4.3 |
Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.
|
28-04-2021 - 19:58 | 15-03-2017 - 19:59 | |
| CVE-2016-5239 | 7.5 |
The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors.
|
04-08-2018 - 01:29 | 15-03-2017 - 19:59 | |
| CVE-2016-5240 | 4.3 |
The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a circularly defined SVG file.
|
18-05-2018 - 01:29 | 27-02-2017 - 22:59 | |
| CVE-2015-8897 | 4.3 |
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
|
18-05-2018 - 01:29 | 15-03-2017 - 19:59 | |
| CVE-2015-8895 | 5.0 |
Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.
|
18-05-2018 - 01:29 | 15-03-2017 - 19:59 | |
| CVE-2015-8898 | 4.3 |
The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.
|
18-05-2018 - 01:29 | 15-03-2017 - 19:59 |