CVE-2016-8707
HIGH7.8EPSS 2.1%發布日:2016/12/23修改日:2026/4/28
也稱為:DEBIAN-CVE-2016-8707
描述
An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility. A crafted TIFF document can lead to an out of bounds write which in particular circumstances could be leveraged into remote code execution. The vulnerability can be triggered through any user controlled TIFF that is handled by this functionality.
受影響套件(1)
- Debian/imagemagickfrom 0, < 8:6.9.7.0+dfsg-2
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |