Imagemagick CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (738 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2017-5506	2 Debian, Imagemagick	2 Debian Linux, Imagemagick	2025-04-20	7.8 High
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
CVE-2017-12428	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c.
CVE-2017-12644	1 Imagemagick	1 Imagemagick	2025-04-20	8.8 High
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c.
CVE-2014-9849	4 Canonical, Imagemagick, Opensuse and 1 more	9 Ubuntu Linux, Imagemagick, Opensuse and 6 more	2025-04-20	N/A
The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).
CVE-2014-9907	1 Imagemagick	1 Imagemagick	2025-04-20	6.5 Medium
coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file.
CVE-2014-9846	5 Canonical, Imagemagick, Opensuse and 2 more	11 Ubuntu Linux, Imagemagick, Leap and 8 more	2025-04-20	N/A
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
CVE-2017-11751	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2014-9851	4 Canonical, Imagemagick, Opensuse and 1 more	9 Ubuntu Linux, Imagemagick, Opensuse and 6 more	2025-04-20	N/A
ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).
CVE-2014-9852	3 Imagemagick, Opensuse, Suse	7 Imagemagick, Leap, Opensuse and 4 more	2025-04-20	9.8 Critical
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
CVE-2014-9847	4 Canonical, Imagemagick, Opensuse and 1 more	10 Ubuntu Linux, Imagemagick, Opensuse and 7 more	2025-04-20	N/A
The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
CVE-2017-11754	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an OpenPixelCache call.
CVE-2014-9840	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.
CVE-2014-9839	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).
CVE-2014-9838	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).
CVE-2014-9836	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a crafted xpm file.
CVE-2017-14139	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
CVE-2014-9837	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.
CVE-2014-9835	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.
CVE-2017-12587	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c.
CVE-2014-9832	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file.

« first previous Page 9 of 37. next last »