Home CVE Database CVE-2016-3718

CVE-2016-3718

Description

The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to conduct server-side request forgery (SSRF) attacks via a crafted image.

Priority: MEDIUM
CVSS v3: 6.3
Publish Date: May 5, 2016
Related ID: --
CVSS v2: Medium
Modified Date: May 9, 2016

Find out more about CVE-2016-3718 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

imagemagick

Live chat
Online