CVE-2020-27765

LOW Year: 2020
CVSS v3 Score
3.3
Low
CVSS v2 Score
4.3
Medium
Weakness Type
CWE-369
View all →

Vulnerability Description

A flaw was found in ImageMagick in MagickCore/segment.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. This would most likely lead to an impact to application availability, but could potentially cause other problems related to undefined behavior. This flaw affects ImageMagick versions prior to 7.0.9-0.

Related Vulnerabilities

CVE-2020-14415

LOW
CVSS:3.3(Low)

oss_write in audio/ossaudio.c in QEMU before 5.0.0 mishandles a buffer position.

CWE-3692020

CVE-2020-27560

LOW
CVSS:3.3(Low)

ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames in MagickCore/layer.c, which may cause a denial of service.

CWE-3692020

CVE-2020-27763

LOW
CVSS:3.3(Low)

A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. T...

CWE-3692020

CVE-2020-27773

LOW
CVSS:3.3(Low)

A flaw was found in ImageMagick in MagickCore/gem-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the ...

CWE-3692020

CVE-2023-25511

LOW
CVSS:3.3(Low)

NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in cuobjdump, where a division-by-zero error may enable a user to cause a crash, which may lead to a limited denial of service.

CWE-3692023

CVE-2023-3044

LOW
CVSS:3.3(Low)

An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the probl...

CWE-3692023