Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2017
CVE-2017-12670
In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, leading to an assertion failure in the function DestroyImage in MagickCore/image.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-08-07
CVE-2017-12671
In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-07
CVE-2017-12672
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-07
CVE-2017-12673
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-07
CVE-2017-12674
In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-08-07
CVE-2017-12675
In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-07
CVE-2017-12676
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-07
CVE-2016-3113
Cross-site scripting (XSS) vulnerability in ovirt-engine allows remote attackers to inject arbitrary web script or HTML.
CVSS Score
6.1
EPSS Score
0.04
Published
2017-08-07
CVE-2016-6220
Information Disclosure vulnerability in the Dashboard and Error Pages in Trend Micro Control Manager SP3 6.0.
CVSS Score
7.5
EPSS Score
0.005
Published
2017-08-07
CVE-2016-7976
The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams.
CVSS Score
8.8
EPSS Score
0.749
Published
2017-08-07


Products
Pricing
Contact Us

Shodan ® - All rights reserved