ImageMagick contains an improper input validation vulnerability that affects the EPHEMERAL, HTTPS, MVG, MSL, TEXT, SHOW, WIN, and PLT coders. This allows a remote attacker to execute arbitrary code via shell metacharacters in a crafted image.

debiancve 1

prion 1

exploitdb 2

nessus 25

thn 1

suse 6

symantec 1

redhatcve 1

ubuntucve 1

veracode 2

seebug 2

cve 1

archlinux 1

f5 6

myhack58 1

vulnrichment 1

hackerone 1

threatpost 2

checkpoint_advisories 1

openvas 22

nvd 1

cvelist 1

attackerkb 3

packetstorm 1

zdt 2

cert 1

githubexploit 3

slackware 2

amazon 1

centos 1

debian 6

osv 4

mageia 1

freebsd 1

oraclelinux 2

redhat 1

exploitpack 1

altlinux 1

cloudfoundry 1

ubuntu 1

gentoo 1

debiancve

CVE-2016-3714

2016-05-05 18:59:03

prion

Code injection

2016-05-05 18:59:00

exploitdb

ImageMagick 6.9.3-9 / 7.0.1-0 - 'ImageTragick' Delegate Arbitrary Command Execution (Metasploit)

2016-05-09 00:00:00

ImageMagick 7.0.1-0 / 6.9.3-9 - 'ImageTragick ' Multiple Vulnerabilities

2016-05-04 00:00:00

nessus

SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2016:1301-1) (ImageTragick)

2016-05-17 00:00:00

F5 Networks BIG-IP : ImageMagick vulnerability (K03151140) (ImageTragick)

2016-05-12 00:00:00

openSUSE Security Update : GraphicsMagick (openSUSE-2016-602) (ImageTragick)

2016-05-20 00:00:00

thn

Warning — Widely Popular ImageMagick Tool Vulnerable to Remote Code Execution

2016-05-03 22:59:00

suse

Security update for ImageMagick (important)

2016-05-13 20:08:08

Security update for GraphicsMagick (important)

2016-05-18 14:08:13

Security update for ImageMagick (important)

2016-05-07 18:07:43

symantec

SA151: ImageMagick RCE Vulnerability (ImageTragick)

2017-07-05 08:00:00

redhatcve

CVE-2016-3714

2016-05-03 15:49:11

ubuntucve

CVE-2016-3714

2016-05-05 00:00:00

veracode

Remote Code Execution (RCE)

2019-01-15 09:11:36

Remote Code Execution (RCE)

2017-02-01 08:53:07

seebug

Wordpress 4.5.1 Remote Command Execute

2016-05-05 00:00:00

ImageMagick 命令执行漏洞 (ImageTragick)

2016-05-04 00:00:00

cve

CVE-2016-3714

2016-05-05 18:59:03

archlinux

imagemagick: arbitrary code execution

2016-05-05 00:00:00

K03151140 : ImageMagick vulnerability CVE-2016-3714

2016-05-10 00:00:00

SOL10550253 - ImageMagick vulnerability CVE-2016-3715

2016-05-13 00:00:00

SOL25102203 - ImageMagick vulnerability CVE-2016-3716

2016-05-13 00:00:00

myhack58

How to pass the command injection vulnerability fix Yahoo subsidiary production servers-vulnerability warning-the black bar safety net

2017-06-06 00:00:00

vulnrichment

CVE-2016-3714

2016-05-05 18:00:00

hackerone

Internet Bug Bounty: Insufficient shell characters filtering leads to (potentially remote) code execution (CVE-2016-3714)

2016-04-21 00:00:00

threatpost

SEMrush Plugs Remote Code Execution Bug in Its SaaS Platform

2019-06-25 22:47:50

Public Exploits Available for ImageMagick Vulnerabilities

2016-05-04 12:17:05

checkpoint_advisories

ImageMagick Insufficient Character Filtering Remote Code Execution (CVE-2016-3714)

2016-06-30 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2016:1301-1)

2021-06-09 00:00:00

Western Digital My Cloud Multiple Products < 2.21.111 Multiple Vulnerabilities

2020-09-02 00:00:00

openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2016:1326-1)

2016-05-19 00:00:00

nvd

CVE-2016-3714

2016-05-05 18:59:03

cvelist

CVE-2016-3714

2016-05-05 18:00:00

attackerkb

CVE-2016-3714

2016-05-05 00:00:00

CVE-2016-3718

2016-05-05 00:00:00

CVE-2016-3715

2016-05-05 00:00:00

packetstorm

ImageMagick Delegate Arbitrary Command Execution

2016-05-06 00:00:00

zdt

ImageMagick 6.9.3-9 / 7.0.1-0 - Delegate Arbitrary Command Execution (ImageTragick)

2016-05-09 00:00:00

ImageMagick 6.9.3-9 / 7.0.1-0 - Multiple Vulnerabilities (ImageTragick)

2016-05-04 00:00:00

cert

ImageMagick does not properly validate input before processing images using a delegate

2016-05-04 00:00:00

githubexploit

Exploit for Improper Input Validation in Imagemagick

2022-11-17 17:24:26

Exploit for CVE-2014-4210

2022-03-19 01:54:15

Exploit for CVE-2014-4210

2022-03-19 01:54:15

slackware

[slackware-security] imagemagick

2016-05-11 06:33:30

[slackware-security] imagemagick

2016-05-11 06:33:30

amazon

Important: ImageMagick

2016-05-11 11:00:00

centos

ImageMagick security update

2016-05-09 17:51:59

debian

[SECURITY] [DSA 3580-1] imagemagick security update

2016-05-16 17:37:08

[SECURITY] [DSA 3580-1] imagemagick security update

2016-05-16 17:37:08

[SECURITY] [DLA 486-1] imagemagick security update

2016-05-23 02:34:38

osv

imagemagick - security update

2016-05-16 00:00:00

imagemagick - security update

2016-05-23 00:00:00

graphicsmagick - security update

2016-05-21 00:00:00

mageia

Updated imagemagick/ruby-rmagic packages fix security vulnerability

2016-05-20 14:38:30

freebsd

ImageMagick -- multiple vulnerabilities

2016-05-03 00:00:00

oraclelinux

ImageMagick security update

2016-05-09 00:00:00

ImageMagick security update

2016-06-16 00:00:00

redhat

(RHSA-2016:0726) Important: ImageMagick security update

2016-05-09 16:56:15

exploitpack

ImageMagick 7.0.1-0 6.9.3-9 - ImageTragick Multiple Vulnerabilities

2016-05-04 00:00:00

altlinux

Security fix for the ALT Linux 7 package ImageMagick version 6.8.4.10-alt3.M70P.1

2016-05-20 00:00:00

cloudfoundry

USN-2990-1 ImageMagick vulnerability (a.k.a. ImageTragick) | Cloud Foundry

2016-06-13 00:00:00

ubuntu

ImageMagick vulnerabilities

2016-06-02 00:00:00

gentoo

ImageMagick: Multiple vulnerabilities

2016-11-30 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

8.4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

Low

EPSS

0.974

Percentile

99.9%

JSON

Related for CISA-KEV-CVE-2016-3714