{"alias":[],"description":"The MagickMalloc function in magick\/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a \"file truncation error for corrupt file.\"","epss":{"percentile":"0.77779","score":"0.010590"},"id":"CVE-2016-8684","metrics":{"cvss2":{"ac_insuf_info":0,"access_complexity":"MEDIUM","access_vector":"NETWORK","authentication":"NONE","availability_impact":"PARTIAL","base_score":6.8,"base_severity":"MEDIUM","confidentiality_impact":"PARTIAL","exploitability_score":8.6,"impact_score":6.4,"integrity_impact":"PARTIAL","obtain_all_privilege":0,"obtain_other_privilege":0,"obtain_user_privilege":0,"user_interaction_required":1,"vector_string":"AV:N\/AC:M\/Au:N\/C:P\/I:P\/A:P","version":"2.0"},"cvss3":{"attack_complexity":"LOW","attack_vector":"LOCAL","availability_impact":"HIGH","base_score":7.8,"base_severity":"HIGH","confidentiality_impact":"HIGH","exploitability_score":1.8,"impact_score":5.9,"integrity_impact":"HIGH","privileges_required":"NONE","scope":"UNCHANGED","user_interaction":"REQUIRED","vector_string":"CVSS:3.0\/AV:L\/AC:L\/PR:N\/UI:R\/S:U\/C:H\/I:H\/A:H","version":"3.0"}},"modified":"2025-04-20T01:37:25","nvd_status":"Deferred","published":"2017-02-15T19:59:00","score":7.8,"severity":"HIGH","source":"cve@mitre.org","status":"PUBLISHED","weaknesses":[{"id":"CWE-119","name":"Improper Restriction of Operations within the Bounds of a Memory Buffer","type":"weakness"}]}