VDB
CVE-2021-20310
CVE-2021-20310
PUBLISHED
In ImageMagick existieren mehrere Schwachstellen, die auf einer Division durch 0 beruhen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle mithilfe einer speziell gestalteten Datei ausnutzen, um nicht näher spezifizierte Auswirkungen zu verursachen. Zur erfolgreichen Ausnutzung dieser Schwachstelle ist eine Benutzerinteraktion erforderlich.
EPSS 0.27% · 50.9th percentile
Risk Scores
EPSS Score
0.27%
50.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | Amazon Linux 2 | |
| SUSE | SUSE Linux | |
| Ubuntu | Ubuntu Linux | |
| Debian | Debian Linux |
Timeline
- Apr 6, 2021 CVE Published
- May 12, 2021 EPSS Score
- Jul 15, 2021 EPSS Score
- Sep 15, 2021 EPSS Score
- Nov 15, 2021 EPSS Score
- Jan 16, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Mar 19, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 21, 2022 EPSS Score
- Sep 21, 2022 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-1574.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1574 advisory
- https://lists.debian.org/debian-lts-announce/2021/06/msg00000.html advisory
- https://github.com/ImageMagick/ImageMagick/issues/3296 advisory
- https://github.com/ImageMagick/ImageMagick/issues/3295 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1946722 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1946728 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1946739 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1946742 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-April/008667.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2021-April/008664.html advisory
- https://ubuntu.com/security/notices/USN-5158-1 advisory
- https://alas.aws.amazon.com/AL2022/ALAS-2022-141.html advisory
- https://alas.aws.amazon.com/AL2022/ALAS-2022-164.html advisory
- https://ubuntu.com/security/notices/USN-5736-1 advisory
- https://lists.debian.org/debian-lts-announce/2023/05/msg00020.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2023-December/017411.html advisory
- https://ubuntu.com/security/notices/USN-6200-1 advisory
- https://alas.aws.amazon.com/AL2/ALAS-2024-2559.html advisory
- https://ubuntu.com/security/notices/USN-6200-2 advisory