CVE-2014-8716

LOW

The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service (out-of-bounds memory access and crash).

Source: MITRE

Published: 2017-04-11

Updated: 2017-04-17

Type: CWE-125

Base Score: 2.1

Vector: (AV:L/AC:L/Au:N/C:N/I:N/A:P)

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW

Base Score: 6.2

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 2.5

Severity: MEDIUM

ID	Name	Product	Family	Severity
100480	Debian DLA-960-1 : imagemagick security update	Nessus	Debian Local Security Checks	high
95053	Ubuntu 12.04 LTS / 14.04 LTS / 16.04 LTS / 16.10 : imagemagick vulnerabilities (USN-3131-1)	Nessus	Ubuntu Local Security Checks	high
82358	Mandriva Linux Security Advisory : imagemagick (MDVSA-2015:105)	Nessus	Mandriva Local Security Checks	high
82235	Debian DLA-90-1 : imagemagick security update	Nessus	Debian Local Security Checks	low
80021	SuSE 11.3 Security Update : Image Magick (SAT Patch Number 9976)	Nessus	SuSE Local Security Checks	high
79574	openSUSE Security Update : ImageMagick (openSUSE-SU-2014:1492-1)	Nessus	SuSE Local Security Checks	low
79572	Mandriva Linux Security Advisory : imagemagick (MDVSA-2014:226)	Nessus	Mandriva Local Security Checks	medium