VDB
CVE-2021-3610
CVE-2021-3610
PUBLISHED
Es existiert eine Schwachstelle in ImageMagick. Der Fehler besteht aufgrund eines Heap-basierten Pufferüberlaufs in "ReadTIFFImage()" in der Komponente "coders/tiff.c". Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand auszulösen.
EPSS 0.22% · 44.5th percentile
Risk Scores
EPSS Score
0.22%
44.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | |
| Ubuntu | Ubuntu Linux |
Timeline
- Jun 20, 2021 CVE Published
- Feb 25, 2022 EPSS Score
- Apr 18, 2022 EPSS Score
- Jun 9, 2022 EPSS Score
- Aug 1, 2022 EPSS Score
- Sep 21, 2022 EPSS Score
- Nov 12, 2022 EPSS Score
- Jan 3, 2023 EPSS Score
- Feb 24, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 17, 2023 EPSS Score
- Jun 8, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2023-1633.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1633 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1973689 advisory
- https://access.redhat.com/security/cve/cve-2021-3610 advisory
- https://ubuntu.com/security/notices/USN-6200-1 advisory
- https://lists.debian.org/debian-security-announce/2024/msg00035.html advisory
- https://ubuntu.com/security/notices/USN-6200-2 advisory