Lucene search
K

2782 matches found

NVD
NVD
added 2026/02/24 2:16 a.m.10 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS0.00435EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 2:16 a.m.8 views

CVE-2026-25986

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer overflow write vulnerability exists in ReadYUVImage coders/yuv.c when processing malicious YUV 4:2:2 NoInterlace images. The pixel-pair loop write...

9.8CVSS0.00461EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 2:16 a.m.3 views

DEBIAN-CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS7.8AI score0.00435EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 2:16 a.m.5 views

UBUNTU-CVE-2026-25965

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw filename string before the filesystem resolves it. As a result, a policy rule such as /etc/ can be...

8.6CVSS5.8AI score0.00671EPSS
Exploits0References4
OSV
OSV
added 2026/02/24 2:16 a.m.6 views

UBUNTU-CVE-2026-25971

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for circular references between two MSLs, leading to a stack overflow. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

9.8CVSS5.9AI score0.00208EPSS
Exploits0References3
OSV
OSV
added 2026/02/24 2:16 a.m.4 views

UBUNTU-CVE-2026-25970

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a signed integer overflow vulnerability in ImageMagick's SIXEL decoder allows an attacker to trigger memory corruption and denial of service when processing a...

7.5CVSS6AI score0.00275EPSS
Exploits0References4
OSV
OSV
added 2026/02/24 2:16 a.m.4 views

UBUNTU-CVE-2026-25897

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer Overflow vulnerability exists in the sun decoder. On 32-bit systems/builds, a carefully crafted image can lead to an out of bounds heap write. Versio...

9.8CVSS5.8AI score0.00302EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/24 2:1 a.m.1 views

CVE-2026-26983 ImageMagick: Invalid MSL <map> can result in a use after free

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing a invalid element that causes it to use an image after it has been freed. Versions 7.1.2-15 and 6.9.13-40 contain a...

5.3CVSS5.8AI score0.0045EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/24 2:1 a.m.10 views

CVE-2026-26983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing a invalid element that causes it to use an image after it has been freed. Versions 7.1.2-15 and 6.9.13-40 contain a...

5.3CVSS5.3AI score0.0045EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/02/24 2:1 a.m.239 views

CVE-2026-26983

CVE-2026-26983 affects ImageMagick. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing an invalid element, leading to a use-after-free condition. The vulnerability can impact image processing workflows that rely on MSL, with a patch available in the affected re...

5.3CVSS5.3AI score0.0045EPSS
Exploits0References1Affected Software1
AlpineLinux
AlpineLinux
added 2026/02/24 2:1 a.m.2 views

CVE-2026-26983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing a invalid element that causes it to use an image after it has been freed. Versions 7.1.2-15 and 6.9.13-40 contain a...

5.3CVSS5.4AI score0.0045EPSS
Exploits0
OSV
OSV
added 2026/02/24 1:55 a.m.4 views

CVE-2026-26283 ImageMagick has possible infinite loop in JPEG encoder when using `jpeg:extent`

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

6.2CVSS5.6AI score0.00327EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/24 1:52 a.m.6 views

EUVD-2026-7415

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with IPTCTEXT. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

7.5CVSS5.3AI score0.00327EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/24 1:52 a.m.3 views

CVE-2026-26066

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with IPTCTEXT. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

7.5CVSS7.7AI score0.00327EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/24 1:50 a.m.3 views

CVE-2026-25989

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file can cause a denial of service. An off-by-one boundary check instead of = that allows bypass the guard and reach an undefined sizet cast...

7.5CVSS5.6AI score0.00594EPSS
Exploits0
Cvelist
Cvelist
added 2026/02/24 1:48 a.m.26 views

CVE-2026-25988 ImageMagick's MSL image stack index not refreshed, leading to leaked images.

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, sometimes msl.c fails to update the stack index, so an image is stored in the wrong slot and never freed on error, causing leaks. Versions 7.1.2-15 and 6.9.13-4...

5.3CVSS0.00438EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/24 1:48 a.m.7 views

EUVD-2026-7417

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, sometimes msl.c fails to update the stack index, so an image is stored in the wrong slot and never freed on error, causing leaks. Versions 7.1.2-15 and 6.9.13-4...

5.3CVSS5.3AI score0.00438EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/02/24 1:48 a.m.6 views

CVE-2026-25988

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, sometimes msl.c fails to update the stack index, so an image is stored in the wrong slot and never freed on error, causing leaks. Versions 7.1.2-15 and 6.9.13-4...

7.5CVSS5.5AI score0.00438EPSS
Exploits0
Cvelist
Cvelist
added 2026/02/24 1:46 a.m.24 views

CVE-2026-25987 ImageMagick has heap buffer over-read in MAP image decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory...

5.3CVSS0.0037EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 1:46 a.m.3 views

CVE-2026-25987 ImageMagick has heap buffer over-read in MAP image decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image decoder when processing crafted MAP files, potentially leading to crashes or unintended memory...

5.3CVSS6AI score0.0037EPSS
Exploits0References3
Rows per page
Query Builder