{"vulnerability": "CVE-2020-27770", "sightings": [{"uuid": "54f170d1-ce21-402b-afe1-9f8f484c55aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-27770", "type": "seen", "source": "https://t.me/cibsecurity/17157", "content": "\u203c CVE-2020-27770 \u203c\n\nDue to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability. This could be triggered by a crafted input file that is processed by ImageMagick. This flaw affects ImageMagick versions prior to 7.0.8-68.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-04T18:27:17.000000Z"}]}