CVE-2020-13902 - CERT CVE

  1. CVE-2020-13902

ID CVE-2020-13902
Sažetak ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding.
Reference
CVSS
Base: 5.8
Impact: 4.9
Exploitability:8.6
Pristup
VektorSloženostAutentikacija
NETWORK MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL NONE PARTIAL
CVSS vektor AV:N/AC:M/Au:N/C:P/I:N/A:P
Zadnje važnije ažuriranje 10-06-2020 - 14:39
Objavljeno 07-06-2020 - 18:15