Skip to main content

Divide By Zero

CVE-2021-20245

Severity Medium
Score 5.5/10

Summary

A flaw was found in ImageMagick before 7.0.10-62 and ImageMagick6 before 6.9.11-62 in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

  • LOW
  • LOCAL
  • NONE
  • UNCHANGED
  • REQUIRED
  • NONE
  • NONE
  • HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

  • Published