Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-5288-7h2x-fgwg

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 6.5

Описание

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted wpg image file that triggers a ReadWPGImage call.

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted wpg image file that triggers a ReadWPGImage call.

Ссылки

EPSS

Процентиль: 80%
0.01465
Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2017-17682

Дефекты

CWE-400

Связанные уязвимости

ubuntu логотип

CVE-2017-17682

CVSS3: 6.5
ubuntu
около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted wpg image file that triggers a ReadWPGImage call.

redhat логотип

CVE-2017-17682

CVSS3: 3.3
redhat
около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted wpg image file that triggers a ReadWPGImage call.

nvd логотип

CVE-2017-17682

CVSS3: 6.5
nvd
около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted wpg image file that triggers a ReadWPGImage call.

debian логотип

CVE-2017-17682

CVSS3: 6.5
debian
около 8 лет назад

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in t ...

fstec логотип

BDU:2021-03361

CVSS3: 6.5
fstec
около 8 лет назад

Уязвимость функции ExtractPostscript компонента coders/wpg.c консольного графического редактора ImageMagick, связанная с ошибкой механизма контроля расходуемых ресурсов, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 80%
0.01465
Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2017-17682

Дефекты

CWE-400