EPSS
Percentile
30.2%
In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGStripString function of coders/svg.c, which allows attackers to cause a denial of service via a crafted SVG image file.
bugzilla.redhat.com/show_bug.cgi?id=1637186
www.cve.org/CVERecord?id=CVE-2018-18023 https://nvd.nist.gov/vuln/detail/CVE-2018-18023