cbcvebase.
CVE-2023-34152
published 2023-05-30

CVE-2023-34152: A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable-pipes configured.

Affected

8 ranges
VendorProductVersion rangeFixed in
debianimagemagick
fedoraprojectextra_packages_for_enterprise_linux
fedoraprojectfedora
fedoraprojectfedora
imagemagickimagemagick< 7.1.1-117.1.1-11
imagemagickimagemagick
redhatenterprise_linux
redhatenterprise_linux

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL