CVE-2023-34152

Опубликовано: 29 мая 2023

Источник: redhat

CVSS3: 9.4

Описание

A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

A vulnerability was found in ImageMagick. This issue can allow remote code execution in OpenBlob with --enable-pipes configured.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	ImageMagick	Not affected
Red Hat Enterprise Linux 7	ImageMagick	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-20

https://bugzilla.redhat.com/show_bug.cgi?id=2210659ImageMagick: RCE (shell command injection) vulnerability in OpenBlob with --enable-pipes configured

9.4 Critical

CVSS3

Связанные уязвимости

CVE-2023-34152

CVSS3: 9.8

ubuntu

около 2 лет назад

A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

CVE-2023-34152

CVSS3: 9.8

nvd

около 2 лет назад

A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

CVE-2023-34152

CVSS3: 9.8

debian

около 2 лет назад

A vulnerability was found in ImageMagick. This security flaw cause a r ...

GHSA-47q6-hqqr-mcr3

github

около 2 лет назад

A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

BDU:2023-03578

CVSS3: 9.8

fstec

около 2 лет назад

Уязвимость компонента OpenBlob консольного графического редактора ImageMagick, позволяющая нарушителю выполнить произвольный код

9.4 Critical

CVSS3