Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-wm8c-wvf5-rvvc

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.

The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.

EPSS

Процентиль: 59%
0.00377
Низкий

Связанные уязвимости

CVSS3: 6.5
ubuntu
почти 6 лет назад

The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.

CVSS3: 5.5
redhat
около 6 лет назад

The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.

CVSS3: 6.5
nvd
почти 6 лет назад

The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.

CVSS3: 6.5
debian
почти 6 лет назад

The XWD image (X Window System window dumping file) parsing component ...

CVSS3: 6.5
fstec
почти 6 лет назад

Уязвимость компонента для парсинга изображений XWD консольного графического редактора ImageMagick, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 59%
0.00377
Низкий