6.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
29.5%
In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGStripString function of coders/svg.c, which allows attackers to cause a denial of service via a crafted SVG image file.
github.com/ImageMagick/ImageMagick/issues/1336
usn.ubuntu.com/4034-1/