Imagemagick Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

6.8.9.9-349
7.0.144
7.0.042
7.0.238
7.0.6-137

Przeciwdziałanie

Official Fix619
Temporary Fix0
Workaround0
Unavailable0
Not Defined72

Wykorzystywanie

High0
Functional0
Proof-of-Concept28
Unproven0
Not Defined663

Wektor dostępu

Not Defined0
Physical0
Local27
Adjacent33
Network631

Uwierzytelnianie

Not Defined0
High0
Low45
None646

Interakcja z użytkownikiem

Not Defined0
Required377
None314

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤31
≤411
≤563
≤6337
≤7114
≤8136
≤915
≤1014

CVSSv3 Temp

≤10
≤20
≤31
≤411
≤565
≤6346
≤7149
≤890
≤920
≤109

VulDB

≤10
≤20
≤31
≤424
≤5263
≤6182
≤7101
≤895
≤910
≤1015

NVD

≤10
≤20
≤30
≤424
≤50
≤694
≤7276
≤881
≤975
≤1036

CNA

≤10
≤20
≤30
≤40
≤51
≤61
≤70
≤81
≤92
≤100

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k93
<2k445
<5k144
<10k2
<25k4
<50k0
<100k3
≥100k0

Wykorzystaj dzisiaj

<1k680
<2k9
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (331): 1.7, 1.7.1, 1.7.2, 1.7.3, 1.7.4, 1.7.5, 5.2, 5.3, 5.3.3, 5.3.8, 5.4, 5.4.3, 5.4.4.5, 5.4.7, 5.4.8, 5.4.8.2.1.1, 5.5, 5.5.3.2.1.2, 5.5.4, 5.5.6, 5.5.6.0 2003-04-09, 5.5.7, 5.5.7.1, 5.5.7.2, 5.5.7.3, 5.5.7.4, 5.5.7.5, 5.5.7.6, 5.5.7.7, 5.5.7.8, 5.5.7.9, 5.5.7.11, 5.5.7.12, 5.5.7.13, 5.5.7.14, 5.5.7.15, 5.5.7.16, 5.5.7.17, 5.5.7.18, 5.5.7.19, 5.5.7.21, 5.5.7.22, 5.5.7.23, 5.5.7.24, 5.5.7.25, 5.5.7.26, 5.5.7.27, 5.5.7.28, 5.5.7.29, 6, 6.0, 6.0.0.7, 6.0.1, 6.0.1.4, 6.0.2, 6.0.2.5, 6.0.2.7, 6.0.3, 6.0.3.5, 6.0.4, 6.0.4.4, 6.0.5, 6.0.5.3, 6.0.6, 6.0.6.1, 6.0.6.2, 6.0.7, 6.0.8, 6.1, 6.1.1.6, 6.1.2, 6.1.3, 6.1.4, 6.1.5, 6.1.6, 6.1.7, 6.1.8, 6.2, 6.2.0.4, 6.2.0.7, 6.2.0.8, 6.2.1, 6.2.1.7, 6.2.2, 6.2.2.5, 6.2.3, 6.2.3.6, 6.2.4, 6.2.4.2-r1, 6.2.4.5, 6.2.5, 6.2.6, 6.2.7, 6.2.8, 6.3, 6.3.0.1, 6.3.0.2, 6.3.0.3, 6.3.0.4, 6.3.0.5, 6.3.0.7, 6.3.0.8, 6.3.1, 6.3.1.1, 6.3.1.2, 6.3.1.3, 6.3.1.4, 6.3.1.5, 6.3.1.6, 6.3.1.7, 6.3.2, 6.3.2.1, 6.3.2.2, 6.3.2.3, 6.3.2.4, 6.3.2.5, 6.3.2.6, 6.3.2.7, 6.3.2.8, 6.3.3, 6.3.3.1, 6.3.3.2, 6.3.3.3, 6.3.3.4, 6.3.5-9, 6.4, 6.5, 6.5.1, 6.5.2, 6.5.2-8, 6.5.3, 6.5.3-5, 6.5.4, 6.6, 6.6.0-3, 6.7, 6.7.8-, 6.7.8-1, 6.7.8-2, 6.7.8-3, 6.7.8-4, 6.7.8-5, 6.7.8-6, 6.7.8-7, 6.8, 6.8.8-4, 6.8.8-5, 6.8.9-8, 6.8.9-9, 6.8.9.6, 6.8.9.9, 6.8.9.9-3, 6.9, 6.9.0-1 Beta, 6.9.0-3, 6.9.1, 6.9.1-3, 6.9.2, 6.9.2-1, 6.9.2-3, 6.9.3, 6.9.3-9, 6.9.4, 6.9.4-2, 6.9.4-3, 6.9.4-4, 6.9.4-6, 6.9.4-7, 6.9.4-8, 6.9.4-9, 6.9.5, 6.9.5-2, 6.9.5-4, 6.9.5-5, 6.9.5-7, 6.9.6, 6.9.6-2, 6.9.6-3, 6.9.7, 6.9.7-3, 6.9.7-5, 6.9.7-9, 6.9.8, 6.9.8-4, 6.9.8-7, 6.9.8-9, 6.9.9, 6.9.9-2, 6.9.9-3, 6.9.9-4, 6.9.9-23, 6.9.10-4, 6.9.10-41, 6.9.10-67, 6.9.10-68, 6.9.11, 6.9.11-22, 6.9.11-39, 6.9.12-9, 6.9.12-21, 7, 7.0, 7.0.1, 7.0.1-1, 7.0.1-3, 7.0.1-4, 7.0.1-6, 7.0.1-9, 7.0.2, 7.0.3, 7.0.3-2, 7.0.3-8, 7.0.3.1, 7.0.3.2, 7.0.3.3, 7.0.3.4, 7.0.3.5, 7.0.3.6, 7.0.3.8, 7.0.4, 7.0.4-3, 7.0.4-5, 7.0.4-9, 7.0.4.9, 7.0.5, 7.0.5-1, 7.0.5-4, 7.0.5-5, 7.0.5-6, 7.0.5-6 Q16, 7.0.5-7, 7.0.5-8, 7.0.5-9, 7.0.6, 7.0.6-, 7.0.6-1, 7.0.6-1 Q16, 7.0.6-2, 7.0.6-3, 7.0.6-4, 7.0.6-5, 7.0.6-6, 7.0.6-8, 7.0.6-8 Q16, 7.0.6-10 Q16, 7.0.7, 7.0.7-, 7.0.7-0 Q16, 7.0.7-1, 7.0.7-1 Q16, 7.0.7-2, 7.0.7-3, 7.0.7-4, 7.0.7-4 Q16, 7.0.7-6, 7.0.7-9, 7.0.7-11, 7.0.7-12, 7.0.7-12 Q16, 7.0.7-16 Q16, 7.0.7-17 Q16, 7.0.7-20 Q16, 7.0.7-22, 7.0.7-22 Q16, 7.0.7-23 Q16, 7.0.7-24 Q16, 7.0.7-25 Q16, 7.0.7-26 Q16, 7.0.7-27, 7.0.7-28, 7.0.7-29, 7.0.7-36 Q16, 7.0.7-37, 7.0.7-37 Q16, 7.0.8, 7.0.8-3 Q16, 7.0.8-4, 7.0.8-5, 7.0.8-6, 7.0.8-7, 7.0.8-8, 7.0.8-11, 7.0.8-11 Q16, 7.0.8-13, 7.0.8-13 Q16, 7.0.8-16, 7.0.8-24, 7.0.8-26 Q16, 7.0.8-31, 7.0.8-34, 7.0.8-35, 7.0.8-36 Q16, 7.0.8-40 Q16, 7.0.8-41, 7.0.8-41 Q16, 7.0.8-43, 7.0.8-43 Q16, 7.0.8-49, 7.0.8-50 Q16, 7.0.8-53, 7.0.8-54, 7.0.8-54 Q16, 7.0.8-61, 7.0.8-67, 7.0.8-68, 7.0.9, 7.0.9-7 Q16, 7.0.10-3, 7.0.10-7, 7.0.10-17, 7.0.10-34, 7.0.10-39, 7.0.10-44, 7.0.10-45, 7.0.10-55, 7.0.11, 7.0.11-5, 7.0.11-13, 7.0.11-14, 7.1, 7.1.0-4, 7.1.0-6, 7.1.0-14, 7.1.0-27, 7.1.0-29, 7.1.0-49, 7.1.1-12, 7.2, 7.3, 7.4, 7.5

Typ oprogramowania: Image Processing Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2023-10-206.56.3ImageMagick Engine Plugin cross site request forgery$0-$5k$0-$5kProof-of-ConceptNot Defined0.03CVE-2022-2441
2023-10-036.36.3ImageMagick bmp.c memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-5341
2023-08-235.95.9ImageMagick Identify Help Command denial of service$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2022-48541
2023-08-235.95.9ImageMagick emf.c ReadEnhMetaFile denial of service$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-40211
2023-08-083.83.7ImageMagick Draw denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-39978
2023-07-195.95.8ImageMagick quantum-private.h PushCharPixel memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-3745
2023-06-296.36.0ImageMagick tiff.c ReadTIFFImage memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-3428
2023-06-125.45.4ImageMagick profile.c ReplaceXmpValue memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-34475
2023-06-125.45.4ImageMagick tim2.c ReadTIM2ImageData memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-34474
2023-06-125.45.4ImageMagick TIFF File Parser tiff.c memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-3195
2023-05-297.06.9ImageMagick privilege escalation$0-$5k$0-$5kProof-of-ConceptNot Defined0.05CVE-2023-34153
2023-05-295.55.5ImageMagick SVG memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-34151
2023-05-298.08.0ImageMagick OpenBlob privilege escalation$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-34152
2023-05-195.35.1ImageMagick memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-2157
2023-04-225.45.1ImageMagick File meta.c information disclosure$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2016-7524
2023-04-225.45.2ImageMagick File meta.c information disclosure$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2016-7523
2023-04-217.57.4ImageMagick PSD Image psd.c WritePSDImage memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-2030
2023-04-217.57.4ImageMagick PSD Image psd.c DecodePSDPixels memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-1958
2023-04-217.07.0ImageMagick psd.c WritePSDImage memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2014-1947
2023-04-136.36.0ImageMagick File quantum-import.c ImportMultiSpectralQuantum information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-1906
2023-03-244.94.8ImageMagick SVG File tmp memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-1289
2023-02-107.57.4ImageMagick Engine Plugin privilege escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-3568
2023-02-075.45.4ImageMagick PNG Image denial of service$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2022-44267
2023-02-074.34.3ImageMagick PNG Image information disclosure$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2022-44268
2022-09-204.94.8ImageMagick TIFF File memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2022-3213

666 więcej wpisów nie jest pokazywanych

Interested in the pricing of exploits?

See the underground prices here!