CVE-2018-16323
37Vexday Risk Score
No sign of exploitation. It has a public proof of concept.
ssvc Attendepss 49%
from disclosure to weapon78 days
Published on NVDSep 1
1st PoC+78d
exploitation probability
49%top 1% of all CVEs
observed exploitation
nono source reports it
3 public exploit(s)
ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data.
Affected products
n/a · n/apublic PoCs found — 3
githubgithub.com/ttffdd/XBadManners★ 82cve_referencewww.exploit-db.com/exploits/45890/unverifiedexploitdbwww.exploit-db.com/exploits/45890unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.