← Back

CVE-2017-18210

nvd nist
Published: Mar 1, 2018Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.

Affected (26)

Imagemagick
1 product
Imagemagick
Configuration A
26 vulnerable
Vulnerable SoftwareAffected Versions
Imagemagick
Imagemagick
Version 7.0.7-0
Imagemagick
Version 7.0.7-10
Imagemagick
Version 7.0.7-11
Imagemagick
Version 7.0.7-12
Imagemagick
Version 7.0.7-13
Imagemagick
Version 7.0.7-14
Imagemagick
Version 7.0.7-15
Imagemagick
Version 7.0.7-16
Imagemagick
Version 7.0.7-17
Imagemagick
Version 7.0.7-18
Imagemagick
Version 7.0.7-19
Imagemagick
Version 7.0.7-1
Imagemagick
Version 7.0.7-20
Imagemagick
Version 7.0.7-21
Imagemagick
Version 7.0.7-22
Imagemagick
Version 7.0.7-23
Imagemagick
Version 7.0.7-24
Imagemagick
Version 7.0.7-25
Imagemagick
Version 7.0.7-2
Imagemagick
Version 7.0.7-3
Imagemagick
Version 7.0.7-4
Imagemagick
Version 7.0.7-5
Imagemagick
Version 7.0.7-6
Imagemagick
Version 7.0.7-8
Imagemagick
Version 7.0.7-9
Imagemagick
Version 7.0.7.7

Related CWEs

CWE-476
NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.

References (4)

Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory

Timeline

No history available yet.