Lucene search
+L

2782 matches found

Debian CVE
Debian CVE
added 2026/02/24 1:46 a.m.3 views

CVE-2026-25987

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory...

9.1CVSS7.9AI score0.0037EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/24 1:46 a.m.3 views

CVE-2026-25987

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory...

9.1CVSS5.8AI score0.0037EPSS
Exploits0
OSV
OSV
added 2026/02/24 1:46 a.m.4 views

CVE-2026-25987 ImageMagick has heap buffer over-read in MAP image decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory...

5.3CVSS6AI score0.0037EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/24 1:43 a.m.31 views

CVE-2026-25985 Memory allocation with excessive without limits in the internal SVG decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file containing an malicious element causes ImageMagick to attempt to allocate 674 GB of memory, leading to an out-of-memory abort. Versions...

7.5CVSS0.00501EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/24 1:43 a.m.3 views

CVE-2026-25985 Memory allocation with excessive without limits in the internal SVG decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file containing an malicious element causes ImageMagick to attempt to allocate 674 GB of memory, leading to an out-of-memory abort. Versions...

7.5CVSS5.9AI score0.00501EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/02/24 1:41 a.m.3 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS5.5AI score0.00435EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/02/24 1:41 a.m.4 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS7.8AI score0.00435EPSS
Exploits0
CVE
CVE
added 2026/02/24 1:39 a.m.65 views

CVE-2026-25971

CVE-2026-25971 : ImageMagick’s Magick Scripting Language (MSL) parsing fails to guard against circular references between two MSLs, causing a stack overflow. Affected versions are pre-7.1.2-15 and pre-6.9.13-40; these versions include a patch. Debian/SUSE advisories list this CVE among many image...

9.8CVSS5.4AI score0.00208EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2026/02/24 1:35 a.m.3 views

CVE-2026-25970

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a signed integer overflow vulnerability in ImageMagick's SIXEL decoder allows an attacker to trigger memory corruption and denial of service when processing a...

7.5CVSS5.9AI score0.00275EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/24 1:30 a.m.2 views

CVE-2026-25968

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a stack buffer overflow occurs when processing the an attribute in msl.c. A long value overflows a fixed-size stack buffer, leading to memory corruption. Versio...

9.8CVSS5.8AI score0.00272EPSS
Exploits0
EUVD
EUVD
added 2026/02/24 1:27 a.m.6 views

EUVD-2026-7437

ImageMagick is free and open-source software used for editing and manipulating digital images. The shipped "secure" security policy includes a rule intended to prevent reading/writing from standard streams. However, ImageMagick also supports fd: pseudo-filenames e.g., fd:0, fd:1. Prior to version...

5.9CVSS5.4AI score0.00135EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/24 1:20 a.m.5 views

EUVD-2026-7438

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw filename string before the filesystem resolves it. As a result, a policy rule such as /etc/ can be...

8.6CVSS5.4AI score0.00671EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 1:20 a.m.3 views

CVE-2026-25965 ImageMagick's policy bypass through path traversal allows reading restricted content despite secured policy

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw filename string before the filesystem resolves it. As a result, a policy rule such as /etc/ can be...

8.6CVSS6AI score0.00671EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/02/24 1:16 a.m.12 views

CVE-2026-25897

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer Overflow vulnerability exists in the sun decoder. On 32-bit systems/builds, a carefully crafted image can lead to an out of bounds heap write. Versio...

9.8CVSS7.7AI score0.00302EPSS
Exploits0
NVD
NVD
added 2026/02/24 1:16 a.m.7 views

CVE-2026-25798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a NULL pointer dereference in ClonePixelCacheRepository allows a remote attacker to crash any application linked against ImageMagick by supplying a crafted imag...

7.5CVSS0.00429EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 1:16 a.m.8 views

CVE-2026-25799

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image loading, resultin...

7.5CVSS0.00385EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 1:16 a.m.8 views

CVE-2026-25638

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in coders/msl.c. In the WriteMSLImage function of the msl.c file, resources are allocated. But the function returns early without releasing...

5.3CVSS0.00325EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 1:16 a.m.6 views

CVE-2026-25576

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw image format handles. The vulnerability occurs when processing images with -extract dimensions larg...

5.5CVSS0.00181EPSS
Exploits0References3
OSV
OSV
added 2026/02/24 1:16 a.m.0 views

DEBIAN-CVE-2026-24485

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage function becomes trapped in an infinite loop while searching for the Sync marker, causing...

7.5CVSS7.7AI score0.00449EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 1:16 a.m.7 views

UBUNTU-CVE-2026-25638

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in coders/msl.c. In the WriteMSLImage function of the msl.c file, resources are allocated. But the function returns early without releasing...

5.3CVSS5.8AI score0.00325EPSS
Exploits0References4
Rows per page
Query Builder