Search for vulnerabilities
Vulnerability details: VCID-ahk5-ax3z-aaaj
Vulnerability ID VCID-ahk5-ax3z-aaaj
Aliases CVE-2008-3134
Summary Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite loop, or memory consumption) via (a) unspecified vectors in the (1) AVI, (2) AVS, (3) DCM, (4) EPT, (5) FITS, (6) MTV, (7) PALM, (8) RLA, and (9) TGA decoder readers; and (b) the GetImageCharacteristics function in magick/image.c, as reachable from a crafted (10) PNG, (11) JPEG, (12) BMP, or (13) TIFF file.
Status Published
Exploitability 0.5
Weighted Severity 4.5
Risk 2.2
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-399 Resource Management Errors
System Score Found at
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.01621 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.02636 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.05759 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.07206 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.07206 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.08192 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.08192 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.08192 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
epss 0.08192 https://api.first.org/data/v1/epss?cve=CVE-2008-3134
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=454982
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2008-3134
Reference id Reference type URL
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00004.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3134.json
https://api.first.org/data/v1/epss?cve=CVE-2008-3134
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3134
http://secunia.com/advisories/30879
http://secunia.com/advisories/32151
https://exchange.xforce.ibmcloud.com/vulnerabilities/43511
https://exchange.xforce.ibmcloud.com/vulnerabilities/43513
http://sourceforge.net/forum/forum.php?forum_id=841176
http://sourceforge.net/project/shownotes.php?release_id=610253
http://www.securityfocus.com/bid/30055
http://www.securitytracker.com/id?1020413
http://www.vupen.com/english/advisories/2008/1984/references
454982 https://bugzilla.redhat.com/show_bug.cgi?id=454982
491439 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=491439
cpe:2.3:a:graphicsmagick:graphicsmagick:1.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.0:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.0.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.0.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.10:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.11:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.12:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.8:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.1.9:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.2:*:*:*:*:*:*:*
cpe:2.3:a:graphicsmagick:graphicsmagick:1.2.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:graphicsmagick:graphicsmagick:1.2.18:*:*:*:*:*:*:*
CVE-2008-3134 https://nvd.nist.gov/vuln/detail/CVE-2008-3134
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2008-3134
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.80156
EPSS Score 0.01621
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.