Vulnerability Description
A Remote Code Execution vulnerability has been found in the Horde_Image library when using the "Im" backend that utilizes ImageMagick's "convert" utility. It's not exploitable through any Horde application, because the code path to the vulnerability is not used by any Horde code. Custom applications using the Horde_Image library might be affected. This vulnerability affects all versions of Horde_Image from 2.0.0 to 2.5.1, and is fixed in 2.5.2. The problem is missing input validation of the index field in _raw() during construction of an ImageMagick command line.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Horde | Horde Image Api | 2.0.0 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2017/09/21/4Mailing ListThird Party Advisory
- https://github.com/horde/horde/commit/eb3afd14c22c77ae0d29e2848f5ac726ef6e7c5bExploitThird Party Advisory
- https://marc.info/?l=horde-announce&m=150600299528079&w=2Mailing ListThird Party Advisory
- https://www.debian.org/security/2018/dsa-4276
- http://www.openwall.com/lists/oss-security/2017/09/21/4Mailing ListThird Party Advisory
- https://github.com/horde/horde/commit/eb3afd14c22c77ae0d29e2848f5ac726ef6e7c5bExploitThird Party Advisory
- https://marc.info/?l=horde-announce&m=150600299528079&w=2Mailing ListThird Party Advisory
- https://www.debian.org/security/2018/dsa-4276
FAQ
What is CVE-2017-14650?
CVE-2017-14650 is a vulnerability with a CVSS score of 8.1 (HIGH). A Remote Code Execution vulnerability has been found in the Horde_Image library when using the "Im" backend that utilizes ImageMagick's "convert" utility. It's not exploitable through any Horde applic...
How severe is CVE-2017-14650?
CVE-2017-14650 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-14650?
Check the references section above for vendor advisories and patch information. Affected products include: Horde Horde Image Api.