CVE-2016-3715

Known Exploited (CISA KEV)MEDIUM

5.5

CVSS Severity Score

EPSS Score61.9530%

EPSS Percentile94.28th

PublishedMay 5, 2016

Last ModifiedApr 22, 2026

Vulnerability Description

The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to delete arbitrary files via a crafted image.

Affected Platforms (CPE)

💻

Redhat

Enterprise Linux Desktop

= 6.0

💻

Redhat

Enterprise Linux Desktop

= 7.0

💻

Redhat

Enterprise Linux Eus

= 6.7

💻

Redhat

Enterprise Linux Eus

= 7.2

💻

Redhat

Enterprise Linux Eus

= 7.3

💻

Redhat

Enterprise Linux Eus

= 7.4

💻

Redhat

Enterprise Linux Eus

= 7.5

💻

Redhat

Enterprise Linux Eus

= 7.6

💻

Redhat

Enterprise Linux Eus

= 7.7

💻

Redhat

Enterprise Linux For Ibm Z Systems

= 6.0_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems

= 7.0_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 6.7_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 7.2_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 7.3_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 7.4_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 7.5_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 7.6_s390x

💻

Redhat

Enterprise Linux For Ibm Z Systems Eus

= 7.7_s390x

💻

Redhat

Enterprise Linux For Power Big Endian

= 6.0_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian

= 7.0_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 6.7_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 7.2_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 7.3_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 7.4_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 7.5_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 7.6_ppc64

💻

Redhat

Enterprise Linux For Power Big Endian Eus

= 7.7_ppc64

💻

Redhat

Enterprise Linux For Power Little Endian

= 7.0_ppc64le

💻

Redhat

Enterprise Linux For Power Little Endian Eus

= 7.2_ppc64le

💻

Redhat

Enterprise Linux For Power Little Endian Eus

= 7.3_ppc64le

💻

Redhat

Enterprise Linux For Power Little Endian Eus

= 7.4_ppc64le

💻

Redhat

Enterprise Linux For Power Little Endian Eus

= 7.5_ppc64le

💻

Redhat

Enterprise Linux For Power Little Endian Eus

= 7.6_ppc64le

💻

Redhat

Enterprise Linux For Power Little Endian Eus

= 7.7_ppc64le

💻

Redhat

Enterprise Linux Hpc Node

= 6.0

💻

Redhat

Enterprise Linux Hpc Node

= 7.0

💻

Redhat

Enterprise Linux Hpc Node Eus

= 7.2

💻

Redhat

Enterprise Linux Server

= 6.0

💻

Redhat

Enterprise Linux Server

= 7.0

💻

Redhat

Enterprise Linux Server Aus

= 7.2

💻

Redhat

Enterprise Linux Server Aus

= 7.3

💻

Redhat

Enterprise Linux Server Aus

= 7.4

💻

Redhat

Enterprise Linux Server Aus

= 7.6

💻

Redhat

Enterprise Linux Server Aus

= 7.7

💻

Redhat

Enterprise Linux Server From Rhui

= 6.0

💻

Redhat

Enterprise Linux Server From Rhui

= 7.0

💻

Redhat

Enterprise Linux Server Supplementary Eus

= 6.7z

💻

Redhat

Enterprise Linux Server Tus

= 7.2

💻

Redhat

Enterprise Linux Server Tus

= 7.3

💻

Redhat

Enterprise Linux Server Tus

= 7.6

💻

Redhat

Enterprise Linux Server Tus

= 7.7

💻

Redhat

Enterprise Linux Workstation

= 6.0

💻

Redhat

Enterprise Linux Workstation

= 7.0

📦

Imagemagick

< 6.9.3-10

📦

Imagemagick

= 7.0.0-0

📦

Imagemagick

= 7.0.1-0

💻

Canonical

Ubuntu Linux

= 12.04

💻

Canonical

Ubuntu Linux

= 14.04

💻

Canonical

Ubuntu Linux

= 15.10

💻

Canonical

Ubuntu Linux

= 16.04

💻

Oracle

Linux

= 6

💻

Oracle

Linux

= 7

💻

Oracle

Solaris

= 10

💻

Oracle

Solaris

= 11.3

📦

Suse

Linux Enterprise Debuginfo

= 11

📦

Suse

Linux Enterprise Debuginfo

= 11

📦

Suse

Linux Enterprise Debuginfo

= 11

📦

Suse

Manager

= 2.1

📦

Suse

Manager Proxy

= 2.1

📦

Suse

Openstack Cloud

= 5

💻

Opensuse

Leap

= 42.1

💻

Opensuse

= 13.2

💻

Suse

Linux Enterprise Desktop

= 12

💻

Suse

Linux Enterprise Desktop

= 12

💻

Suse

Linux Enterprise Server

= 11

💻

Suse

Linux Enterprise Server

= 11

💻

Suse

Linux Enterprise Server

= 11

💻

Suse

Linux Enterprise Server

= 12

💻

Suse

Linux Enterprise Server

= 12

💻

Suse

Linux Enterprise Software Development Kit

= 11

💻

Suse

Linux Enterprise Software Development Kit

= 12

💻

Suse

Linux Enterprise Software Development Kit

= 12

💻

Suse

Linux Enterprise Workstation Extension

= 12

💻

Suse

Linux Enterprise Workstation Extension

= 12

References & Advisories

🔗 http://git.imagemagick.org/repos/ImageMagick/blob/a01518e08c840577cabd7d3ff291a9ba735f7276/ChangeLog

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00024.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00025.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00028.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00032.html

🔗 http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00051.html

🔗 http://rhn.redhat.com/errata/RHSA-2016-0726.html

🔗 http://www.debian.org/security/2016/dsa-3580