Misaligned Address Vulnerability in ImageMagick's MagickCore/property.c

Misaligned Address Vulnerability in ImageMagick's MagickCore/property.c

CVE-2022-32547 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at MagickCore/property.c. Whenever crafted or untrusted input is processed by ImageMagick, this causes a negative impact to application availability or other problems related to undefined behavior.

Learn more about our Web Application Penetration Testing UK.