Vulnerability Details CVE-2017-11166
The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.8%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 7.1
References
Products affected by CVE-2017-11166
-
cpe:2.3:a:imagemagick:imagemagick:7.0.5-6