← back
CVE-2018-16323

CVE-2018-16323

37Vexday Risk Score

No sign of exploitation. It has a public proof of concept.

ssvc Attendepss 49%
from disclosure to weapon78 days
Published on NVDSep 1
1st PoC+78d
exploitation probability
49%top 1% of all CVEs
observed exploitation
nono source reports it
3 public exploit(s)
ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.