CVE-2018-20184
Severity Score
6.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.
En GraphicsMagick 1.4 snapshot-20181209 Q8, hay un desbordamiento de búfer basado en memoria dinámica (heap) en la función WriteTGAImage de tga.c, lo que permite que los atacantes provoquen una denegación de servicio (DoS) mediante un archivo de imagen manipulado. Esto se debe a que el número de filas o columnas puede sobrepasar las restricciones de dimensiones de pixel de la especificación TGA.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2018-12-17 CVE Reserved
- 2018-12-17 CVE Published
- 2024-07-12 EPSS Updated
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-787: Out-of-bounds Write
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/106229 | Third Party Advisory | |
| https://lists.debian.org/debian-lts-announce/2018/12/msg00018.html | Mailing List |
|
| URL | Date | SRC |
|---|---|---|
| https://sourceforge.net/p/graphicsmagick/bugs/583 | 2024-08-05 |
| URL | Date | SRC |
|---|---|---|
| http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/15d1b5fd003b | 2020-08-24 |
| URL | Date | SRC |
|---|---|---|
| https://usn.ubuntu.com/4207-1 | 2020-08-24 | |
| https://www.debian.org/security/2020/dsa-4640 | 2020-08-24 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Graphicsmagick Search vendor "Graphicsmagick" | Graphicsmagick Search vendor "Graphicsmagick" for product "Graphicsmagick" | 1.4 Search vendor "Graphicsmagick" for product "Graphicsmagick" and version "1.4" | - |
Affected
| ||||||
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 8.0 Search vendor "Debian" for product "Debian Linux" and version "8.0" | - |
Affected
| ||||||