ImageMagick up to 7.0.8 quantum-private.h integer overflow

entryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in ImageMagick up to 7.0.8 (Image Processing Software) and classified as critical. Affected by this vulnerability is an unknown function of the file MagickCore/quantum-private.h. Upgrading to version 7.0.9 eliminates this vulnerability.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
1096407202/23/2021VulD...price_0day$0-$5ksee documentation02/23/2021accepted90
1096407102/23/2021VulD...cvss3_meta_tempscore6.3see documentation02/23/2021accepted90
1096407002/23/2021VulD...cvss3_meta_basescore6.3see documentation02/23/2021accepted90
1096406902/23/2021VulD...cvss3_vuldb_tempscore6.302/23/2021accepted90
1096406802/23/2021VulD...cvss3_vuldb_basescore6.302/23/2021accepted90
1096406702/23/2021VulD...cvss2_vuldb_tempscore7.502/23/2021accepted90
1096406602/23/2021VulD...cvss2_vuldb_basescore7.502/23/2021accepted90
1096406502/23/2021VulD...cvss3_vuldb_eXderived from historical data02/23/2021accepted80
1096406402/23/2021VulD...cvss2_vuldb_eNDderived from historical data02/23/2021accepted80
1096406302/23/2021VulD...cvss2_vuldb_rlOFderived from vuldb v3 vector02/23/2021accepted80
1096406202/23/2021VulD...cvss2_vuldb_rcCderived from vuldb v3 vector02/23/2021accepted80
1096406102/23/2021VulD...cvss2_vuldb_aiPderived from vuldb v3 vector02/23/2021accepted80
1096406002/23/2021VulD...cvss2_vuldb_iiPderived from vuldb v3 vector02/23/2021accepted80
1096405902/23/2021VulD...cvss2_vuldb_ciPderived from vuldb v3 vector02/23/2021accepted80
1096405802/23/2021VulD...cvss2_vuldb_auNderived from vuldb v3 vector02/23/2021accepted80
1096405702/23/2021VulD...cvss2_vuldb_acLderived from vuldb v3 vector02/23/2021accepted80
1096405602/23/2021VulD...cvss2_vuldb_avNderived from vuldb v3 vector02/23/2021accepted80
1096405502/23/2021VulD...typeImage Processing Software02/23/2021accepted90
1096405402/23/2021VulD...date1614034800 (02/23/2021)02/23/2021accepted90
1096405302/23/2021VulD...cveCVE-2020-27768mitre.org02/23/2021accepted90

Interested in the pricing of exploits?

See the underground prices here!