Search for vulnerabilities
Vulnerability details: VCID-dj4p-8bn7-aaab
Vulnerability ID VCID-dj4p-8bn7-aaab
Aliases CVE-2018-16323
Summary ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data.
Status Published
Exploitability 2.0
Weighted Severity 6.2
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
CWE-665 Improper Initialization
System Score Found at
generic_textual Low http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-16323.html
cvssv3 4.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16323.json
epss 0.16263 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.16263 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.16263 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.17372 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.29868 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.6087 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.6087 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.6087 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.66361 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.73747 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
epss 0.74009 https://api.first.org/data/v1/epss?cve=CVE-2018-16323
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=1624964
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16323
cvssv3 4 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv2 4.3 https://nvd.nist.gov/vuln/detail/CVE-2018-16323
cvssv3 6.5 https://nvd.nist.gov/vuln/detail/CVE-2018-16323
cvssv3.1 6.5 https://nvd.nist.gov/vuln/detail/CVE-2018-16323
generic_textual Negligible https://ubuntu.com/security/notices/USN-3785-1
generic_textual Medium https://ubuntu.com/security/notices/USN-4034-1
Reference id Reference type URL
http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-16323.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16323.json
https://api.first.org/data/v1/epss?cve=CVE-2018-16323
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16323
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://github.com/ImageMagick/ImageMagick/commit/216d117f05bff87b9dc4db55a1b1fadb38bcb786
https://ubuntu.com/security/notices/USN-3785-1
https://ubuntu.com/security/notices/USN-4034-1
https://usn.ubuntu.com/3785-1/
https://usn.ubuntu.com/4034-1/
https://www.exploit-db.com/exploits/45890/
1624964 https://bugzilla.redhat.com/show_bug.cgi?id=1624964
907776 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907776
cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
CVE-2018-16323 Exploit https://github.com/ttffdd/XBadManners/blob/800e9188da9358d932829e33e3c20e9c3466bc62/XBadManners.sh
CVE-2018-16323 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45890.sh
CVE-2018-16323 https://nvd.nist.gov/vuln/detail/CVE-2018-16323
Data source Exploit-DB
Date added Nov. 20, 2018
Description ImageMagick - Memory Leak
Ransomware campaign use Unknown
Source publication date Nov. 19, 2018
Exploit type local
Platform multiple
Source update date Nov. 20, 2018
Source URL https://github.com/ttffdd/XBadManners/blob/800e9188da9358d932829e33e3c20e9c3466bc62/XBadManners.sh
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16323.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-16323
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-16323
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-16323
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.95963
EPSS Score 0.16263
Published At Dec. 17, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.