All vulnerabilities
CVE-2016-3718
ImageMagick Server-Side Request Forgery (SSRF) Vulnerability
ImageMagick — ImageMagick
- Added to KEV catalog
- 3 November 2021
- Federal remediation due date
- 3 May 2022
- Weakness classification (CWE)
- CWE-20
CISA Description
ImageMagick contains an unspecified vulnerability that allows attackers to perform server-side request forgery (SSRF) via a crafted image.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2016-3718
More ImageMagick Vulnerabilities
Confirm Your Exposure
Is this vulnerability present in your environment?
CRS delivers independent VAPT assessments that identify exactly which known-exploited vulnerabilities exist in your network, applications, and infrastructure.
Explore VAPT Services