GSD-2016-3715

Risk Scores

Affected Products

Exploit Intelligence

• JoshMorrison99/CVE-2016-3714 (github-poc)
• ImaegMagick Code Execution (CVE-2016-3714) (github-poc)
• jpeanut/ImageTragick-CVE-2016-3714-RShell (github-poc)
• Fix ImageMagick Command Injection (CVE-2016-3714) with Ansible. (github-poc)
• tommiionfire/CVE-2016-3714 (github-poc)
• a puppet module in response to CVE-2016-3714 (github-poc)
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-3715 (circl)
• 39767 (circl)
• SUSE-SU-2016:1260 (circl)
• [oss-security] 20160504 Re: ImageMagick Is On Fire -- CVE-2016-3714 (circl)

…and 23 more exploits

Timeline

• May 5, 2016 CVE Published
• Nov 8, 2021 PoC Published
• Nov 20, 2021 PoC Published
• Dec 24, 2024 PoC Published
• Feb 23, 2025 PoC Published
• Feb 2, 2026 PoC Published
• Apr 15, 2026 Distribution Patch
• Apr 15, 2026 Distribution Patch
• Apr 15, 2026 Distribution Patch
• Apr 15, 2026 Security Advisory
• Apr 15, 2026 Security Advisory
• Apr 15, 2026 Security Advisory

References

• http://git.imagemagick.org/repos/ImageMagick/blob/a01518e08c840577cabd7d3ff291a9ba735f7276/ChangeLog url
• openSUSE-SU-2016:1266 vendor-advisory
• http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html url
• https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588 url
• openSUSE-SU-2016:1326 vendor-advisory
• openSUSE-SU-2016:1261 vendor-advisory
• 20160513 May 2016 - HipChat Server - Critical Security Advisory mailing-list
• SUSE-SU-2016:1260 vendor-advisory
• http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html url
• [oss-security] 20160504 Re: ImageMagick Is On Fire -- CVE-2016-3714 mailing-list
• SUSE-SU-2016:1275 vendor-advisory
• SSA:2016-132-01 vendor-advisory
• https://www.imagemagick.org/script/changelog.php url
• RHSA-2016:0726 vendor-advisory
• 89852 vdb
• USN-2990-1 advisory
• 39767 exploit
• DSA-3746 advisory
• GLSA-201611-21 advisory
• DSA-3580 advisory

…and 1 more