Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in ImageMagick where it did not properly sanitize certain input before using it to invoke convert processes. This flaw allows an attacker to create a specially crafted image that leads to a use-after-free vulnerability when processed by ImageMagick. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
ImageMagick 资源管理错误漏洞
Vulnerability Description
Imagemagick Studio ImageMagick是美国ImageMagick Studio(Imagemagick Studio)公司的一套开源的图像处理软件。该软件可读取、转换或写入多种格式的图片。 ImageMagick 存在资源管理错误漏洞,该漏洞源于使用某些输入调用转换进程之前没有进行正确地清理。 此漏洞允许攻击者创建特制的图像,在 ImageMagick 处理时导致释放后使用漏洞。 此漏洞的最大威胁是机密性、完整性和系统可用性。
CVSS Information
N/A
Vulnerability Type
N/A