Vulnerability feed

Vulnerability

CVE-2016-3714

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2016-3714
Description:: The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) SHOW, (7) WIN, and (8) PLT coders in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allow remote attackers to execute arbitrary code via shell metacharacters in a crafted image, aka "ImageTragick."
Last updated date:: 09/11/2024

Reports

alt

ACTIVELY EXPLOITED

Type:: exploitation
Confidence:: HIGH
Date of publishing:: 09/09/2024
Reference url to background: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/05/2016
Reference url to background: https://github.com/jpeanut/ImageTragick-CVE-2016-3714-RShell

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/07/2016
Reference url to background: https://github.com/Hood3dRob1n/CVE-2016-3714

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/24/2019
Reference url to background: https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/fileformat/imagemagick_delegate.rb

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/26/2020
Reference url to background: https://mukarramkhalid.com/imagemagick-imagetragick-exploit/

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |