Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2022-44268 — Sensitive Information Exposure in Imagemagick

CWE-200 — Sensitive Information Exposure16 documents10 sources

Severity

6.5MEDIUMNVD

EPSS

88.5%

top 0.49%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Imagemagick Debian Imagemagick

Timeline

PublishedFeb 6

Latest updateApr 17

Description

ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a PNG image (e.g., for resize), the resulting image could have embedded the content of an arbitrary. file (if the magick binary has permissions to read it).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/imagemagick< imagemagick 8:6.9.11.60+dfsg-1.6 (bookworm)

▶Debianimagemagick/imagemagick< 8:6.9.11.60+dfsg-1.3+deb11u1+3

▶NVDimagemagick/imagemagick7.1.0-49

🔴Vulnerability Details

OSV

CVE-2022-44268: ImageMagick 7↗2023-02-06

▶

GHSA

GHSA-g5qh-f5rv-grcp: ImageMagick 7↗2023-02-06

▶

💥Exploits & PoCs

Exploit-DB

ImageMagick 7.1.0-49 - Arbitrary File Read↗2023-04-05

▶

🔍Detection Rules

Suricata

ET EXPLOIT Possible ImageMagick (7.1.0-49) Arbitrary Remote Leak PNG Upload Attempt (CVE-2022-44268)↗2023-02-05

▶

📋Vendor Advisories

Ubuntu

ImageMagick vulnerabilities↗2023-04-17

▶

Ubuntu

ImageMagick vulnerabilities↗2023-03-15

▶

Ubuntu

ImageMagick vulnerabilities↗2023-02-09

▶

Red Hat

ImageMagick: vulnerable to Information Disclosure when it parses a PNG image↗2023-02-06

▶

Debian

CVE-2022-44268: imagemagick - ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a P...↗2022

▶

📄Research Papers

CTF

Gambar Ajaib / README↗2023

▶

CTF

medium / README↗

▶

CTF

Pilgrimage / README↗

▶

CTF

easy / README↗

▶

CTF

Pilgrimage / README↗

▶

💬Community

HackerOne

[CVE-2022-44268] Arbitrary Remote Leak via ImageMagick↗2023-03-16

▶