CVE-2021-20313 - AskarLabs CVE Database

CVE-2021-20313

Vendor N/A

Product ImageMagick

Weakness CWE-200 · Info exposure

Published May 11, 2021

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality.

Key dates

02Disclosure timeline

May 11, 2021 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-20313

Related vulnerabilities

04Related CVE

CVE-2026-33161 Craft CMS: Anonymous "assets/image-editor" calls returns private asset editor metadata to unauthorized users CVE-2023-50968 Apache OFBiz: Arbitrary file properties reading and SSRF attack CVE-2022-39359 Metabase's GeoJSON validation doesn't prevent redirects to blocked URLs CVE-2023-28322 CVE-2024-12250 Accept Authorize.NET Payments Using Contact Form 7 <= 2.2 - Unauthenticated Information Exposure