Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K82747025
HistoryJun 30, 2016 - 12:00 a.m.

K82747025 : GraphicsMagick vulnerability CVE-2016-5118

2016-06-3000:00:00
my.f5.com
23

9.5 High

AI Score

Confidence

High

0.652 Medium

EPSS

Percentile

97.9%

JSON

Security Advisory Description

The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename. (CVE-2016-5118)
Impact
A remote attacker may be able to execute arbitrary code on the BIG-IP system. BIG-IP AAM, WebAccelerator, and Edge Gateway systems that use a WebAcceleration profile configured with theImage Optimization settings are vulnerable to this issue. The use ofmogrifyin external monitors may also expose this issue. BIG-IQ and Enterprise Manager systems are not vulnerable in their default configuration; however, the vulnerable code exists on these systems and can be made exploitable if themogrify binary is used to perform image optimization remotely.

Related

openvas 27
slackware 1
nessus 24
suse 8
checkpoint_advisories 1
debian 6
prion 1
f5 1
altlinux 2
cve 1
cvelist 1
redhatcve 1
osv 3
alpinelinux 1
nvd 1
ubuntucve 1
veracode 1
debiancve 1
mageia 2
fedora 3
amazon 2
ubuntu 1
cloudfoundry 1
ibm 1
redhat 1
centos 1
oraclelinux 1
openvas
openvas
Debian Security Advisory DSA 3591-1 (imagemagick - security update)
2016-06-01 00:00:00
openSUSE: Security Advisory for ImageMagick (openSUSE-SU-2016:1534-1)
2016-06-10 00:00:00
openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2016:1521-1)
2016-06-08 00:00:00
slackware
slackware
[slackware-security] imagemagick
2016-05-31 05:51:55
nessus
nessus
openSUSE Security Update : GraphicsMagick (openSUSE-2016-693)
2016-06-09 00:00:00
Slackware 14.0 / 14.1 / current : imagemagick (SSA:2016-152-01)
2016-05-31 00:00:00
Debian DSA-3591-1 : imagemagick - security update
2016-06-02 00:00:00
suse
suse
Security update for GraphicsMagick (important)
2016-06-08 12:07:24
Security update for ImageMagick (important)
2016-06-22 15:08:07
Security update for ImageMagick (important)
2016-06-17 17:12:55
checkpoint_advisories
checkpoint_advisories
GraphicsMagick and ImageMagick popen() Command Execution (CVE-2016-5118)
2017-01-08 00:00:00
debian
debian
[SECURITY] [DLA 500-1] imagemagick security update
2016-06-02 16:19:45
[SECURITY] [DSA 3591-1] imagemagick security update
2016-06-01 10:39:38
[SECURITY] [DLA 502-1] graphicsmagick security update
2016-06-02 09:05:10
prion
prion
Design/Logic Flaw
2016-06-10 15:59:00
f5
f5
SOL82747025 - GraphicsMagick vulnerability CVE-2016-5118
2016-06-30 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package ImageMagick version 6.6.9.7-alt0.M60P.1
2016-06-11 00:00:00
Security fix for the ALT Linux 7 package ImageMagick version 6.8.4.10-alt3.M70P.2
2016-06-06 00:00:00
cve
cve
CVE-2016-5118
2016-06-10 15:59:06
cvelist
cvelist
CVE-2016-5118
2016-06-10 15:00:00
redhatcve
redhatcve
CVE-2016-5118
2016-05-30 11:18:26
osv
osv
CVE-2016-5118
2016-06-10 15:59:00
imagemagick - security update
2016-06-02 00:00:00
graphicsmagick - security update
2016-12-24 00:00:00
alpinelinux
alpinelinux
CVE-2016-5118
2016-06-10 15:59:06
nvd
nvd
CVE-2016-5118
2016-06-10 15:59:06
ubuntucve
ubuntucve
CVE-2016-5118
2016-05-30 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2017-02-01 03:16:22
debiancve
debiancve
CVE-2016-5118
2016-06-10 15:59:06
mageia
mageia
Updated imagemagick packages fix security vulnerabilities
2016-07-19 15:47:11
Updated graphicsmagick packages fix security vulnerability
2016-07-14 23:33:59
fedora
fedora
[SECURITY] Fedora 24 Update: GraphicsMagick-1.3.24-1.fc24
2016-06-18 19:49:22
[SECURITY] Fedora 22 Update: GraphicsMagick-1.3.24-1.fc22
2016-06-19 07:19:42
[SECURITY] Fedora 23 Update: GraphicsMagick-1.3.24-1.fc23
2016-06-19 07:29:29
amazon
amazon
Important: GraphicsMagick
2016-06-22 15:00:00
Important: ImageMagick
2016-06-22 15:00:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2016-06-02 00:00:00
cloudfoundry
cloudfoundry
USN-2990-1 ImageMagick vulnerability (a.k.a. ImageTragick) | Cloud Foundry
2016-06-13 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in ImageMagick affect PowerKVM
2018-06-18 01:32:38
redhat
redhat
(RHSA-2016:1237) Important: ImageMagick security update
2016-06-16 20:02:16
centos
centos
ImageMagick security update
2016-06-16 23:05:59
oraclelinux
oraclelinux
ImageMagick security update
2016-06-16 00:00:00

9.5 High

AI Score

Confidence

High

0.652 Medium

EPSS

Percentile

97.9%

JSON
Related for F5:K82747025
openvas27slackware1nessus24suse8checkpoint_advisories1debian6prion1f51altlinux2cve1cvelist1redhatcve1osv3alpinelinux1nvd1ubuntucve1veracode1debiancve1mageia2fedora3amazon2ubuntu1cloudfoundry1ibm1redhat1centos1oraclelinux1