Fullwaywang

#8823of 53,624
31.1Total CVSS
Vulnerabilities · 4
Medium
1
High
2
Critical
1
PT-2023-5108
7.8
2023-08-07
Vim · Vim · CVE-2023-3896
**Name of the Vulnerable Software and Affected Versions** vim versions 9.0.1367-1 through 9.0.1367-3 **Description** The issue is related to a divide by zero error in the vim text editor. Exploitation of this issue may allow an attacker to execute arbitrary code. **Recommendations** For versions 9.0.1367-1 through 9.0.1367-3, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2023-3431
5.5
2023-05-17
Unknown · Imagemagick · CVE-2023-34151
**Name of the Vulnerable Software and Affected Versions** ImageMagick (affected versions not specified) **Description** The issue is related to an undefined behavior caused by casting double to size t in certain coders, such as svg and mvg, which can lead to integer overflow. This can potentially allow an attacker to cause a denial of service using a specially crafted image. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2023-3439
7.8
2023-05-17
Unknown · Imagemagick · CVE-2023-34153
**Name of the Vulnerable Software and Affected Versions** ImageMagick (affected versions not specified) **Description** A security flaw in ImageMagick causes a shell command injection vulnerability via `video:vsync` or `video:pixel-format` options in VIDEO encoding/decoding. This issue is related to the lack of proper data sanitization when handling these parameters, allowing an attacker to execute arbitrary commands using specially crafted data. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2023-3403
10
2020-03-31
Unknown · Imagemagick · CVE-2023-34152
**Name of the Vulnerable Software and Affected Versions** ImageMagick (affected versions not specified) **Description** A security flaw in ImageMagick causes a remote code execution vulnerability in OpenBlob when --enable-pipes is configured. This vulnerability exists due to the lack of measures to neutralize special elements used in the operating system command. Exploitation of this issue may allow a remote attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.