Imagemagick: >> Imagemagick >> 6.9.10-2 Security Vulnerabilities
Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable.
CVSS Score
9.8
EPSS Score
0.23
Published
2016-12-13
The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename.
CVSS Score
9.8
EPSS Score
0.354
Published
2016-06-10
Page 12