Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie

Type deb

Namespace debian

Name imagemagick

Version 8:6.9.10.2+dfsg-2

Qualifiers

distro	trixie

Subpath

Is_vulnerable false

Next_non_vulnerable_version 8:6.9.10.8+dfsg-1

Latest_non_vulnerable_version 8:7.1.2.19+dfsg1-1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-4kxf-5xrh-uue8

vulnerability_id VCID-4kxf-5xrh-uue8

summary ImageMagick: reachable assertion in ReadOneJNGImage in coders/png.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16749.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16749.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16749

reference_id

reference_type

scores

value	0.00241
scoring_system	epss
scoring_elements	0.47359
published_at	2026-04-01T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47394
published_at	2026-04-02T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47416
published_at	2026-04-04T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47365
published_at	2026-04-07T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.4742
published_at	2026-04-08T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47418
published_at	2026-04-09T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47442
published_at	2026-04-11T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47417
published_at	2026-04-12T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47423
published_at	2026-04-13T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47482
published_at	2026-04-16T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47474
published_at	2026-04-18T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47425
published_at	2026-04-21T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47413
published_at	2026-04-24T12:55:00Z

value	0.00241
scoring_system	epss
scoring_elements	0.47421
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16749

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16749
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16749

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1627916
reference_id	1627916
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1627916

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3785-1/
reference_id	USN-3785-1
reference_type
scores
url	https://usn.ubuntu.com/3785-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-16749

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4kxf-5xrh-uue8

url VCID-78zg-am5w-gugh

vulnerability_id VCID-78zg-am5w-gugh

summary security update

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12600.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12600.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-12600

reference_id

reference_type

scores

value	0.00329
scoring_system	epss
scoring_elements	0.55776
published_at	2026-04-01T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55942
published_at	2026-04-09T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55889
published_at	2026-04-07T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55911
published_at	2026-04-04T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.5594
published_at	2026-04-08T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55952
published_at	2026-04-11T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55931
published_at	2026-04-12T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55914
published_at	2026-04-13T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.5595
published_at	2026-04-16T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57806
published_at	2026-04-24T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57848
published_at	2026-04-21T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57826
published_at	2026-04-26T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57871
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-12600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11251
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11251

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5248
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5248

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ImageMagick/ImageMagick/issues/1178
reference_id
reference_type
scores
url	https://github.com/ImageMagick/ImageMagick/issues/1178

reference_url	https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html

reference_url	https://www.debian.org/security/2018/dsa-4245
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4245

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1594339
reference_id	1594339
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1594339

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902728
reference_id	902728
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902728

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.8-3:::::::*
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.8-3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.8-3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-12600

reference_id

CVE-2018-12600

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-12600

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3711-1/
reference_id	USN-3711-1
reference_type
scores
url	https://usn.ubuntu.com/3711-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-12600

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-78zg-am5w-gugh

url VCID-8862-dh13-hyga

vulnerability_id VCID-8862-dh13-hyga

summary ImageMagick: use after free in ReadMATImage function in coders/mat.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11624.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11624.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-11624

reference_id

reference_type

scores

value	0.00478
scoring_system	epss
scoring_elements	0.64902
published_at	2026-04-01T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65049
published_at	2026-04-26T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65033
published_at	2026-04-18T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65017
published_at	2026-04-21T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65037
published_at	2026-04-24T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64952
published_at	2026-04-02T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64979
published_at	2026-04-04T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64942
published_at	2026-04-07T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64992
published_at	2026-04-08T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65007
published_at	2026-04-09T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65024
published_at	2026-04-11T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65014
published_at	2026-04-12T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.64986
published_at	2026-04-13T12:55:00Z

value	0.00478
scoring_system	epss
scoring_elements	0.65023
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-11624

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11624
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11624

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ImageMagick/ImageMagick/issues/1149
reference_id
reference_type
scores
url	https://github.com/ImageMagick/ImageMagick/issues/1149

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1584898
reference_id	1584898
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1584898

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-36:::::::*
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.7-36:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-36:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-11624

reference_id

CVE-2018-11624

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-11624

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-11624

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8862-dh13-hyga

url VCID-9pr7-aw96-cqfb

vulnerability_id VCID-9pr7-aw96-cqfb

summary ImageMagick: Infinite loop in coders/png.c:ReadOneMNGImage() allows attackers to cause a denial of service via crafted MNG file

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10177.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10177.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10177

reference_id

reference_type

scores

value	0.00355
scoring_system	epss
scoring_elements	0.57729
published_at	2026-04-01T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57813
published_at	2026-04-02T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57833
published_at	2026-04-04T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57808
published_at	2026-04-07T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57863
published_at	2026-04-08T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57864
published_at	2026-04-09T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57881
published_at	2026-04-11T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57859
published_at	2026-04-12T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57838
published_at	2026-04-13T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57867
published_at	2026-04-16T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57866
published_at	2026-04-18T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57843
published_at	2026-04-21T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57801
published_at	2026-04-24T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57821
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10177

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1572044
reference_id	1572044
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1572044

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896018
reference_id	896018
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896018

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3681-1/
reference_id	USN-3681-1
reference_type
scores
url	https://usn.ubuntu.com/3681-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-10177

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9pr7-aw96-cqfb

url VCID-bge6-p7sc-dqdu

vulnerability_id VCID-bge6-p7sc-dqdu

summary ImageMagick: Use-after-free in the TIFFSetProfiles function

references

reference_url	http://bugzilla.maptools.org/show_bug.cgi?id=2730
reference_id
reference_type
scores
url	http://bugzilla.maptools.org/show_bug.cgi?id=2730

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14528.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14528.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-14528

reference_id

reference_type

scores

value	0.00776
scoring_system	epss
scoring_elements	0.73571
published_at	2026-04-01T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73707
published_at	2026-04-26T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73665
published_at	2026-04-16T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73674
published_at	2026-04-18T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73666
published_at	2026-04-21T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73698
published_at	2026-04-24T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.7358
published_at	2026-04-02T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73604
published_at	2026-04-04T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73576
published_at	2026-04-07T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73612
published_at	2026-04-08T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73625
published_at	2026-04-09T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73647
published_at	2026-04-11T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.7363
published_at	2026-04-12T12:55:00Z

value	0.00776
scoring_system	epss
scoring_elements	0.73621
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-14528

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14528
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14528

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.debian.org/debian-lts-announce/2021/01/msg00010.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2021/01/msg00010.html

reference_url	https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=32560
reference_id
reference_type
scores
url	https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=32560

reference_url	http://www.securityfocus.com/bid/100875
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/100875

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1499664
reference_id	1499664
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1499664

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878544
reference_id	878544
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878544

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.6:::::::*
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-14528

reference_id

CVE-2017-14528

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2017-14528

reference_url	https://usn.ubuntu.com/4988-1/
reference_id	USN-4988-1
reference_type
scores
url	https://usn.ubuntu.com/4988-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2017-14528

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bge6-p7sc-dqdu

url VCID-chgt-azpf-auba

vulnerability_id VCID-chgt-azpf-auba

summary security update

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16642.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16642.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16642

reference_id

reference_type

scores

value	0.00307
scoring_system	epss
scoring_elements	0.53847
published_at	2026-04-01T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53864
published_at	2026-04-02T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53893
published_at	2026-04-04T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53867
published_at	2026-04-07T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53919
published_at	2026-04-08T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53918
published_at	2026-04-09T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53964
published_at	2026-04-11T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53947
published_at	2026-04-12T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.5393
published_at	2026-04-13T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53968
published_at	2026-04-16T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53973
published_at	2026-04-18T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53955
published_at	2026-04-21T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53922
published_at	2026-04-24T12:55:00Z

value	0.00307
scoring_system	epss
scoring_elements	0.53934
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16642

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16412
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16412

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16413
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16413

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16642
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16642

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16644
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16644

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16645
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16645

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1626591
reference_id	1626591
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1626591

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3785-1/
reference_id	USN-3785-1
reference_type
scores
url	https://usn.ubuntu.com/3785-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-16642

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-chgt-azpf-auba

url VCID-dkzb-3u3f-yuee

vulnerability_id VCID-dkzb-3u3f-yuee

summary ImageMagick: Memory leak in WriteTIFFImage

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10804.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10804.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10804

reference_id

reference_type

scores

value	0.00141
scoring_system	epss
scoring_elements	0.34117
published_at	2026-04-01T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.33952
published_at	2026-04-26T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34384
published_at	2026-04-18T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34343
published_at	2026-04-21T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.33971
published_at	2026-04-24T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34456
published_at	2026-04-02T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34485
published_at	2026-04-04T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34351
published_at	2026-04-07T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34394
published_at	2026-04-08T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34423
published_at	2026-04-09T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34426
published_at	2026-04-11T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34387
published_at	2026-04-12T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34363
published_at	2026-04-13T12:55:00Z

value	0.00141
scoring_system	epss
scoring_elements	0.34397
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10804

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10804
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10804

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ImageMagick/ImageMagick/issues/1053
reference_id
reference_type
scores
url	https://github.com/ImageMagick/ImageMagick/issues/1053

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1577399
reference_id	1577399
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1577399

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898217
reference_id	898217
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898217

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-28:::::::*
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.7-28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-10804

reference_id

CVE-2018-10804

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-10804

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3681-1/
reference_id	USN-3681-1
reference_type
scores
url	https://usn.ubuntu.com/3681-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-10804

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dkzb-3u3f-yuee

url VCID-jz9p-mte7-vfb3

vulnerability_id VCID-jz9p-mte7-vfb3

summary ImageMagick: Memory leak in the formatIPTCfromBuffer function in coders/meta.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16750.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16750.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16750

reference_id

reference_type

scores

value	0.00132
scoring_system	epss
scoring_elements	0.32668
published_at	2026-04-01T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.328
published_at	2026-04-02T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32836
published_at	2026-04-04T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32658
published_at	2026-04-07T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32706
published_at	2026-04-08T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32732
published_at	2026-04-09T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32733
published_at	2026-04-11T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32696
published_at	2026-04-12T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32669
published_at	2026-04-13T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32708
published_at	2026-04-16T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32685
published_at	2026-04-18T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32655
published_at	2026-04-21T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.325
published_at	2026-04-24T12:55:00Z

value	0.00132
scoring_system	epss
scoring_elements	0.32385
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16750

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16750
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16750

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1627917
reference_id	1627917
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1627917

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3785-1/
reference_id	USN-3785-1
reference_type
scores
url	https://usn.ubuntu.com/3785-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-16750

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jz9p-mte7-vfb3

url VCID-kd82-724m-77h8

vulnerability_id VCID-kd82-724m-77h8

summary security update

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12599.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12599.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-12599

reference_id

reference_type

scores

value	0.00329
scoring_system	epss
scoring_elements	0.55776
published_at	2026-04-01T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55942
published_at	2026-04-09T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55889
published_at	2026-04-07T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55911
published_at	2026-04-04T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.5594
published_at	2026-04-08T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55952
published_at	2026-04-11T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55931
published_at	2026-04-12T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.55914
published_at	2026-04-13T12:55:00Z

value	0.00329
scoring_system	epss
scoring_elements	0.5595
published_at	2026-04-16T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57806
published_at	2026-04-24T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57848
published_at	2026-04-21T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57826
published_at	2026-04-26T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.57871
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-12599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11251
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11251

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12599
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12599

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12600
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12600

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5248
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5248

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ImageMagick/ImageMagick/issues/1177
reference_id
reference_type
scores
url	https://github.com/ImageMagick/ImageMagick/issues/1177

reference_url	https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html

reference_url	https://www.debian.org/security/2018/dsa-4245
reference_id
reference_type
scores
url	https://www.debian.org/security/2018/dsa-4245

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1594338
reference_id	1594338
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1594338

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902727
reference_id	902727
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902727

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.8-3:::::::*
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.8-3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.8-3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-12599

reference_id

CVE-2018-12599

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-12599

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3711-1/
reference_id	USN-3711-1
reference_type
scores
url	https://usn.ubuntu.com/3711-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-12599

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kd82-724m-77h8

url VCID-pwhs-ep5j-pqa7

vulnerability_id VCID-pwhs-ep5j-pqa7

summary ImageMagick: off-by-one read in formatIPTCfromBuffer function in coders/meta.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10131.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10131.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-10131

reference_id

reference_type

scores

value	0.00134
scoring_system	epss
scoring_elements	0.33015
published_at	2026-04-01T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33146
published_at	2026-04-02T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.3318
published_at	2026-04-04T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.3301
published_at	2026-04-07T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33054
published_at	2026-04-08T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33084
published_at	2026-04-09T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33087
published_at	2026-04-11T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33049
published_at	2026-04-12T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33025
published_at	2026-04-13T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33067
published_at	2026-04-16T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33044
published_at	2026-04-18T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.33006
published_at	2026-04-21T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.3286
published_at	2026-04-24T12:55:00Z

value	0.00134
scoring_system	epss
scoring_elements	0.32747
published_at	2026-04-26T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-10131

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10131
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10131

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1704762
reference_id	1704762
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1704762

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/4034-1/
reference_id	USN-4034-1
reference_type
scores
url	https://usn.ubuntu.com/4034-1/

reference_url	https://usn.ubuntu.com/6985-1/
reference_id	USN-6985-1
reference_type
scores
url	https://usn.ubuntu.com/6985-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2019-10131

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pwhs-ep5j-pqa7

url VCID-rypf-qy6p-3bac

vulnerability_id VCID-rypf-qy6p-3bac

summary ImageMagick: heap-based buffer over-read in SetGrayscaleImage in the quantize.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11625.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11625.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-11625

reference_id

reference_type

scores

value	0.00348
scoring_system	epss
scoring_elements	0.57246
published_at	2026-04-01T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57335
published_at	2026-04-26T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57378
published_at	2026-04-18T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57356
published_at	2026-04-21T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57313
published_at	2026-04-24T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57329
published_at	2026-04-02T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57352
published_at	2026-04-04T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57328
published_at	2026-04-07T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.5738
published_at	2026-04-08T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57382
published_at	2026-04-09T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57397
published_at	2026-04-11T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57377
published_at	2026-04-12T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57357
published_at	2026-04-13T12:55:00Z

value	0.00348
scoring_system	epss
scoring_elements	0.57383
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-11625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11625

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ImageMagick/ImageMagick/issues/1156
reference_id
reference_type
scores
url	https://github.com/ImageMagick/ImageMagick/issues/1156

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1584904
reference_id	1584904
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1584904

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-37:q16::::::
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.7-37:q16::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-37:q16::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-11625

reference_id

CVE-2018-11625

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-11625

reference_url	https://usn.ubuntu.com/3681-1/
reference_id	USN-3681-1
reference_type
scores
url	https://usn.ubuntu.com/3681-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-11625

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rypf-qy6p-3bac

url VCID-umnw-ksa8-9ua8

vulnerability_id VCID-umnw-ksa8-9ua8

summary ImageMagick: excessive iteration in the DecodeLabImage and EncodeLabImage functions in coders/tiff.c

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-9133.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-9133.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-9133

reference_id

reference_type

scores

value	0.00265
scoring_system	epss
scoring_elements	0.49998
published_at	2026-04-26T12:55:00Z

value	0.00265
scoring_system	epss
scoring_elements	0.49985
published_at	2026-04-13T12:55:00Z

value	0.00265
scoring_system	epss
scoring_elements	0.5003
published_at	2026-04-16T12:55:00Z

value	0.00265
scoring_system	epss
scoring_elements	0.50032
published_at	2026-04-18T12:55:00Z

value	0.00265
scoring_system	epss
scoring_elements	0.50004
published_at	2026-04-21T12:55:00Z

value	0.00265
scoring_system	epss
scoring_elements	0.49992
published_at	2026-04-24T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.573
published_at	2026-04-09T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.57293
published_at	2026-04-12T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.57156
published_at	2026-04-01T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.57312
published_at	2026-04-11T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.57245
published_at	2026-04-07T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.57268
published_at	2026-04-04T12:55:00Z

value	0.00347
scoring_system	epss
scoring_elements	0.57297
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-9133

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9133
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9133

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1563875
reference_id	1563875
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1563875

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894848
reference_id	894848
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894848

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3681-1/
reference_id	USN-3681-1
reference_type
scores
url	https://usn.ubuntu.com/3681-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-9133

risk_score 1.6

exploitability 0.5

weighted_severity 3.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-umnw-ksa8-9ua8

url VCID-zrkc-cfnt-r7hr

vulnerability_id VCID-zrkc-cfnt-r7hr

summary ImageMagick: Memory leak in ReadYCBCRImage

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10805.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10805.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10805

reference_id

reference_type

scores

value	0.00155
scoring_system	epss
scoring_elements	0.36132
published_at	2026-04-01T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.35918
published_at	2026-04-26T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36234
published_at	2026-04-18T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36182
published_at	2026-04-21T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.3595
published_at	2026-04-24T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36327
published_at	2026-04-02T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.3636
published_at	2026-04-04T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36195
published_at	2026-04-07T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36245
published_at	2026-04-08T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36263
published_at	2026-04-09T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36268
published_at	2026-04-11T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36231
published_at	2026-04-12T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36206
published_at	2026-04-13T12:55:00Z

value	0.00155
scoring_system	epss
scoring_elements	0.36249
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10805

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10805
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10805

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ImageMagick/ImageMagick/issues/1054
reference_id
reference_type
scores
url	https://github.com/ImageMagick/ImageMagick/issues/1054

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1577398
reference_id	1577398
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1577398

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898218
reference_id	898218
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=898218

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-28:::::::*
reference_id	cpe:2.3:a:imagemagick:imagemagick:7.0.7-28:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:7.0.7-28:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-10805

reference_id

CVE-2018-10805

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://nvd.nist.gov/vuln/detail/CVE-2018-10805

reference_url	https://access.redhat.com/errata/RHSA-2020:1180
reference_id	RHSA-2020:1180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1180

reference_url	https://usn.ubuntu.com/3681-1/
reference_id	USN-3681-1
reference_type
scores
url	https://usn.ubuntu.com/3681-1/

fixed_packages

url	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
purl	pkg:deb/debian/imagemagick@8:6.9.10.2%2Bdfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.3%2Bdeb11u4?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eb4u-x1mt-2uan

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.3%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:6.9.11.60%2Bdfsg-1.6%2Bdeb12u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cpn-zvem-v7gt

vulnerability	VCID-2zje-ag2v-7kac

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-54da-fzyt-4ud2

vulnerability	VCID-6h7x-3rue-kucp

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-cuhw-ew1g-s3h2

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-g41y-dv8u-3yf1

vulnerability	VCID-g679-q851-xub7

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-jcjk-s89c-mbbm

vulnerability	VCID-n47w-r932-abey

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-r3vw-ncns-cqgb

vulnerability	VCID-rbdg-vz8x-ykah

vulnerability	VCID-rjkf-pdny-2fhn

vulnerability	VCID-sw7g-hxxr-n3e1

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-tv15-dcnu-pbbn

vulnerability	VCID-utfe-h3b7-jqcj

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-x8c6-9pse-xkc8

vulnerability	VCID-y58b-be93-hbfd

vulnerability	VCID-zab9-9tqj-hbhg

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.11.60%252Bdfsg-1.6%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.1.43%2Bdfsg1-1%2Bdeb13u5?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-a2qm-vkc3-qkd5

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.1.43%252Bdfsg1-1%252Bdeb13u5%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.16%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-jc5m-7rvc-2qg6

vulnerability	VCID-tt6z-t31v-dkdd

vulnerability	VCID-zvq4-ybph-buga

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.16%252Bdfsg1-1%3Fdistro=trixie

url pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

purl pkg:deb/debian/imagemagick@8:7.1.2.18%2Bdfsg1-1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2yv5-qdeg-9bag

vulnerability	VCID-381g-7gdr-qydg

vulnerability	VCID-441f-z9bp-vbdu

vulnerability	VCID-4s37-h3p7-6uab

vulnerability	VCID-6v1d-1wfr-vqd1

vulnerability	VCID-7gb9-gd78-7bdu

vulnerability	VCID-eeju-vhdm-aqbe

vulnerability	VCID-egwu-28fp-dye6

vulnerability	VCID-j6tc-f4fc-mbcv

vulnerability	VCID-qjxn-gm96-7ygc

vulnerability	VCID-uvkp-1zss-57gr

vulnerability	VCID-w9zg-tsbg-afa1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.18%252Bdfsg1-1%3Fdistro=trixie

url	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
purl	pkg:deb/debian/imagemagick@8:7.1.2.19%2Bdfsg1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:7.1.2.19%252Bdfsg1-1%3Fdistro=trixie

aliases CVE-2018-10805

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zrkc-cfnt-r7hr

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/imagemagick@8:6.9.10.2%252Bdfsg-2%3Fdistro=trixie

Package Instance