Home

CVE-2019-13303

Description

ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/composite.c in CompositeImage.

Risk Information

Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.49

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Imagemagic (x64) 7.0.8Windows
Multiple vulnerabilities affected in Imagemagick 7.0.8Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.8Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234