Shodan
Vulnerabilities
Vulnerable Software
Graphicsmagick:  Security Vulnerabilities
CVE-2017-13776
GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex image data" version!=10 case that results in the reader not returning; it would cause large amounts of CPU and memory consumption although the crafted file itself does not request it.
CVSS Score
6.5
EPSS Score
0.011
Published
2017-08-30
CVE-2017-13777
GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex image data" version==10 case that results in the reader not returning; it would cause large amounts of CPU and memory consumption although the crafted file itself does not request it.
CVSS Score
6.5
EPSS Score
0.011
Published
2017-08-30
CVE-2017-13736
There are lots of memory leaks in the GMCommand function in magick/command.c in GraphicsMagick 1.3.26 that will lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.007
Published
2017-08-29
CVE-2017-13737
There is an invalid free in the MagickFree function in magick/memory.c in GraphicsMagick 1.3.26 that will lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.018
Published
2017-08-29
CVE-2017-13648
In GraphicsMagick 1.3.26, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c.
CVSS Score
6.5
EPSS Score
0.005
Published
2017-08-23
CVE-2017-13147
In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value.
CVSS Score
8.8
EPSS Score
0.003
Published
2017-08-23
CVE-2017-13063
GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:314:12.
CVSS Score
6.5
EPSS Score
0.015
Published
2017-08-22
CVE-2017-13064
GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:311:12.
CVSS Score
6.5
EPSS Score
0.017
Published
2017-08-22
CVE-2017-13065
GraphicsMagick 1.3.26 has a NULL pointer dereference vulnerability in the function SVGStartElement in coders/svg.c.
CVSS Score
6.5
EPSS Score
0.013
Published
2017-08-22
CVE-2017-13066
GraphicsMagick 1.3.26 has a memory leak vulnerability in the function CloneImage in magick/image.c.
CVSS Score
6.5
EPSS Score
0.006
Published
2017-08-22


Products
Pricing
Contact Us

Shodan ® - All rights reserved