### [CVE-2021-3962](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3962)
![](https://img.shields.io/static/v1?label=Product&message=ImageMagick&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=7.1.0-14%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-416&color=brightgreen)

### Description

A flaw was found in ImageMagick where it did not properly sanitize certain input before using it to invoke convert processes. This flaw allows an attacker to create a specially crafted image that leads to a use-after-free vulnerability when processed by ImageMagick. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

### POC

#### Reference
- https://github.com/ImageMagick/ImageMagick/issues/4446

#### Github
No PoCs found on GitHub currently.