ImageMagick
cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*
- < 7.1.2-26
A memory leak vulnerability has been identified in ImageMagick versions prior to 7.1.2-26, specifically within the TIFF encoder. This vulnerability arises when memory allocation fails, leading to a small memory leak. Attackers can exploit this issue by triggering allocation failures during the processing of TIFF images, causing memory exhaustion and resulting in a denial-of-service condition.
Exploitation of this vulnerability leads to a memory leak, causing memory exhaustion and a denial-of-service condition.
Users can upgrade to ImageMagick version 7.1.2-26 or later to address this vulnerability.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.