It was discovered that ImageMagick did not properly sanitize certain
input before passing it to the delegate functionality. A remote
attacker could create a specially crafted image that, when processed by
an application using ImageMagick or an unsuspecting user using the
ImageMagick utilities, would lead to arbitrary execution of shell
commands with the privileges of the user running the application.

OSVersionArchitecturePackageVersionFilename
anyanyanyimagemagick< 6.9.3.10-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
any	any	any	imagemagick	< 6.9.3.10-1	UNKNOWN

References

access.redhat.com/security/cve/CVE-2016-3714

bugs.archlinux.org/task/49203

imagetragick.com/

www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588

nessus 25

thn 1

prion 1

debiancve 1

cve 1

suse 6

seebug 2

symantec 1

redhatcve 1

ubuntucve 1

veracode 2

cert 1

nvd 1

hackerone 1

packetstorm 1

threatpost 2

checkpoint_advisories 1

openvas 22

cvelist 1

f5 6

myhack58 1

exploitdb 2

attackerkb 2

freebsd 1

oraclelinux 2

mageia 1

osv 4

debian 6

redhat 1

exploitpack 1

altlinux 1

zdt 1

slackware 2

centos 1

amazon 1

ubuntu 1

cloudfoundry 1

gentoo 1

nessus

SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2016:1301-1) (ImageTragick)

2016-05-17 00:00:00

F5 Networks BIG-IP : ImageMagick vulnerability (K03151140) (ImageTragick)

2016-05-12 00:00:00

openSUSE Security Update : GraphicsMagick (openSUSE-2016-602) (ImageTragick)

2016-05-20 00:00:00

thn

Warning — Widely Popular ImageMagick Tool Vulnerable to Remote Code Execution

2016-05-03 22:59:00

prion

Code injection

2016-05-05 18:59:00

debiancve

CVE-2016-3714

2016-05-05 18:59:03

cve

CVE-2016-3714

2016-05-05 18:59:03

suse

Security update for ImageMagick (important)

2016-05-13 20:08:08

Security update for GraphicsMagick (important)

2016-05-18 14:08:13

Security update for ImageMagick (important)

2016-05-11 17:08:09

seebug

Wordpress 4.5.1 Remote Command Execute

2016-05-05 00:00:00

ImageMagick 命令执行漏洞 (ImageTragick)

2016-05-04 00:00:00

symantec

SA151: ImageMagick RCE Vulnerability (ImageTragick)

2017-07-05 08:00:00

redhatcve

CVE-2016-3714

2016-05-03 15:49:11

ubuntucve

CVE-2016-3714

2016-05-05 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 09:11:36

Remote Code Execution (RCE)

2017-02-01 08:53:07

cert

ImageMagick does not properly validate input before processing images using a delegate

2016-05-04 00:00:00

nvd

CVE-2016-3714

2016-05-05 18:59:03

hackerone

Internet Bug Bounty: Insufficient shell characters filtering leads to (potentially remote) code execution (CVE-2016-3714)

2016-04-21 00:00:00

packetstorm

ImageMagick Delegate Arbitrary Command Execution

2016-05-06 00:00:00

threatpost

Public Exploits Available for ImageMagick Vulnerabilities

2016-05-04 12:17:05

SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform

2019-06-25 22:47:50

checkpoint_advisories

ImageMagick Insufficient Character Filtering Remote Code Execution (CVE-2016-3714)

2016-06-30 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2016:1301-1)

2021-06-09 00:00:00

Western Digital My Cloud Multiple Products < 2.21.111 Multiple Vulnerabilities

2020-09-02 00:00:00

openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2016:1326-1)

2016-05-19 00:00:00

cvelist

CVE-2016-3714

2016-05-05 18:00:00

K03151140 : ImageMagick vulnerability CVE-2016-3714

2016-05-10 00:00:00

SOL03151140 - ImageMagick vulnerability CVE-2016-3714

2016-05-09 00:00:00

SOL61974123 - ImageMagick vulnerability CVE-2016-3718

2016-05-13 00:00:00

myhack58

How to pass the command injection vulnerability fix Yahoo subsidiary production servers-vulnerability warning-the black bar safety net

2017-06-06 00:00:00

exploitdb

ImageMagick 6.9.3-9 / 7.0.1-0 - 'ImageTragick' Delegate Arbitrary Command Execution (Metasploit)

2016-05-09 00:00:00

ImageMagick 7.0.1-0 / 6.9.3-9 - 'ImageTragick ' Multiple Vulnerabilities

2016-05-04 00:00:00

attackerkb

CVE-2016-3718

2016-05-05 00:00:00

CVE-2016-3715

2016-05-05 00:00:00

freebsd

ImageMagick -- multiple vulnerabilities

2016-05-03 00:00:00

oraclelinux

ImageMagick security update

2016-05-09 00:00:00

ImageMagick security update

2016-06-16 00:00:00

mageia

Updated imagemagick/ruby-rmagic packages fix security vulnerability

2016-05-20 14:38:30

osv

imagemagick - security update

2016-05-16 00:00:00

imagemagick - security update

2016-05-23 00:00:00

graphicsmagick - security update

2016-05-21 00:00:00

debian

[SECURITY] [DSA 3580-1] imagemagick security update

2016-05-16 17:37:08

[SECURITY] [DSA 3580-1] imagemagick security update

2016-05-16 17:37:08

[SECURITY] [DLA 486-1] imagemagick security update

2016-05-23 02:34:38

redhat

(RHSA-2016:0726) Important: ImageMagick security update

2016-05-09 16:56:15

exploitpack

ImageMagick 7.0.1-0 6.9.3-9 - ImageTragick Multiple Vulnerabilities

2016-05-04 00:00:00

altlinux

Security fix for the ALT Linux 7 package ImageMagick version 6.8.4.10-alt3.M70P.1

2016-05-20 00:00:00

zdt

ImageMagick 6.9.3-9 / 7.0.1-0 - Multiple Vulnerabilities (ImageTragick)

2016-05-04 00:00:00

slackware

[slackware-security] imagemagick

2016-05-11 06:33:30

[slackware-security] imagemagick

2016-05-11 06:33:30

centos

ImageMagick security update

2016-05-09 17:51:59

amazon

Important: ImageMagick

2016-05-11 11:00:00

ubuntu

ImageMagick vulnerabilities

2016-06-02 00:00:00

cloudfoundry

USN-2990-1 ImageMagick vulnerability (a.k.a. ImageTragick) | Cloud Foundry

2016-06-13 00:00:00

gentoo

ImageMagick: Multiple vulnerabilities

2016-11-30 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.967 High

EPSS

Percentile

99.7%

JSON

Related for ASA-201605-6