Home

CVE-2019-18853

Description

ImageMagick before 7.0.9-0 allows remote attackers to cause a denial of service because XML_PARSE_HUGE is not properly restricted in coders/svg.c, related to SVG and libxml2.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.567

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities affected in Imagemagic (x64) 7.0.8Windows
Multiple vulnerabilities affected in Imagemagick 7.0.8Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.8Windows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234