cvedb.io
CVE-2016-8707
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2016-12-23T22:59:00.330 · Last modified 2026-06-17T00:54:51.333

Summary

An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility. A crafted TIFF document can lead to an out of bounds write which in particular circumstances could be leveraged into remote code execution. The vulnerability can be triggered through any user controlled TIFF that is handled by this functionality.

Affected products

imagemagick — imagemagick

Does this affect you?

Add your gear to cvedb and we'll alert you only when imagemagick ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.