By the Year
In 2021 there have been 0 vulnerabilities in PHP Imagick . Imagick did not have any published security vulnerabilities last year.
It may take a day or so for new Imagick vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.
Latest PHP Imagick Security Vulnerabilities
In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix() function did not check
9.8 - Critical
- May 03, 2019
In PHP imagick extension in versions between 3.3.0 and 3.4.4, writing to an array of values in ImagickKernel::fromMatrix() function did not check that the address will be within the allocated array. This could lead to out of bounds write to memory if the function is called with the data controlled by untrusted party.
CVE-2019-11037 can be explotited with network access, and does not require authorization privledges or user interaction. This vulnerability is considered to have a low attack complexity. It has the highest possible exploitability rating (3.9). The potential impact of an exploit of this vulnerability is considered to be critical as this vulneraility has a high impact to the confidentiality, integrity and availability of this component.