How severe is CVE-2020-25674?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2020-25674?

This is classified as CWE-122, which is a common weakness in software security.

CVE-2020-25674 - MEDIUM Severity | CVSS 5.5

Vulnerability Description

WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. This occurs because it is possible for the colormap to have less than 256 valid values but the loop condition will loop 256 times, attempting to pass invalid colormap data to the event logger. The patch replaces the hardcoded 256 value with a call to MagickMin() to ensure the proper value is used. This could impact application availability when a specially crafted input file is processed by ImageMagick. This flaw affects ImageMagick versions prior to 7.0.8-68.

Related Vulnerabilities

CVE-2019-14814

MEDIUM

CVSS:5.5(Medium)

There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system cra...

CWE-1222019

CVE-2019-14816

MEDIUM

CVSS:5.5(Medium)

There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or...

CWE-1222019

CVE-2020-25665

MEDIUM

CVSS:5.5(Medium)

The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be offset by 256. This can cause a out-of-bounds read later on in...

CWE-1222020

CVE-2020-25667

MEDIUM

CVSS:5.5(Medium)

TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes a large out-of-bounds read when it searches for `"dc:format=\"image/dng\"` within `profile` due to improper string handling, when a craf...

CWE-1222020

CVE-2020-27829

MEDIUM

CVSS:5.5(Medium)

A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick before 7.0.10-45.

CWE-1222020

CVE-2020-27841

MEDIUM

CVSS:5.5(Medium)

There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. When an attacker is able to provide crafted input to be processed by the openjpeg encoder, this could cause an out-of-bou...

CWE-1222020