Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2019-13297
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is mishandled.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.003
EPSS Ranking
54.7%
CVSS Severity
CVSS v3 Score
8.8
CVSS v2 Score
6.8
References
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00069.html
https://github.com/ImageMagick/ImageMagick/commit/604588fc35c7585abb7a9e71f69bb82e4389fefc
https://github.com/ImageMagick/ImageMagick/issues/1609
https://github.com/ImageMagick/ImageMagick6/commit/35c7032723d85eee7318ff6c82f031fa2666b773
https://lists.debian.org/debian-lts-announce/2019/08/msg00021.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00030.html
https://usn.ubuntu.com/4192-1/
https://www.debian.org/security/2020/dsa-4712
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00069.html
https://github.com/ImageMagick/ImageMagick/commit/604588fc35c7585abb7a9e71f69bb82e4389fefc
https://github.com/ImageMagick/ImageMagick/issues/1609
https://github.com/ImageMagick/ImageMagick6/commit/35c7032723d85eee7318ff6c82f031fa2666b773
https://lists.debian.org/debian-lts-announce/2019/08/msg00021.html
https://lists.debian.org/debian-lts-announce/2020/08/msg00030.html
https://usn.ubuntu.com/4192-1/
https://www.debian.org/security/2020/dsa-4712
Products affected by CVE-2019-13297
Imagemagick
»
Imagemagick
»
Version:
7.0.8-50
cpe:2.3:a:imagemagick:imagemagick:7.0.8-50
Canonical
»
Ubuntu Linux
»
Version:
16.04
cpe:2.3:o:canonical:ubuntu_linux:16.04
Canonical
»
Ubuntu Linux
»
Version:
18.04
cpe:2.3:o:canonical:ubuntu_linux:18.04
Canonical
»
Ubuntu Linux
»
Version:
19.04
cpe:2.3:o:canonical:ubuntu_linux:19.04
Canonical
»
Ubuntu Linux
»
Version:
19.10
cpe:2.3:o:canonical:ubuntu_linux:19.10
Debian
»
Debian Linux
»
Version:
10.0
cpe:2.3:o:debian:debian_linux:10.0
Debian
»
Debian Linux
»
Version:
8.0
cpe:2.3:o:debian:debian_linux:8.0
Debian
»
Debian Linux
»
Version:
9.0
cpe:2.3:o:debian:debian_linux:9.0
Opensuse
»
Leap
»
Version:
15.0
cpe:2.3:o:opensuse:leap:15.0
Opensuse
»
Leap
»
Version:
15.1
cpe:2.3:o:opensuse:leap:15.1
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved