Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

681 matches found

AlpineLinux
AlpineLinuxadded 2026/02/24 1:41 a.m.1 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS5.5AI score0.0003EPSS
Exploits0
Snyk
Snykadded 2026/02/24 1:39 a.m.3 views

Unchecked Input for Loop Condition

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS6AI score0.00045EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2026/02/23 7:39 p.m.1 views

CVE-2025-67733

Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious user can use scripting commands to inject arbitrary information into the response stream for the given client, potentially corrupting or returning tampered data to other users on the same...

8.5CVSS5.7AI score0.00023EPSS
Exploits0
CNNVD
CNNVDadded 2026/02/20 12:0 a.m.5 views

WordPress plugin PeakShops 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

8.1CVSS5.8AI score0.00056EPSS
Exploits0References1
Veracode
Veracodeadded 2026/02/02 8:56 a.m.5 views

NULL Pointer Dereference

ImageMagick is vulnerable to a NULL pointer dereference vulnerability. The vulnerability is due to improper handling of tags in the MSL Magick Scripting Language parser before images are loaded, which allows an attacker to trigger a denial-of-service DoS condition via assertion failure in debug...

7.5CVSS5.6AI score0.00024EPSS
Exploits1References3Affected Software20
Debian
Debianadded 2026/01/24 3:45 p.m.5 views

[SECURITY] [DLA 4448-1] imagemagick security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4448-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès January 24, 2026 https://wiki.debian.org/LTS -...

9.8CVSS5.9AI score0.00114EPSS
Exploits3
OSV
OSVadded 2026/01/23 12:24 p.m.3 views

OESA-2026-1246 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

9.8CVSS6.9AI score0.00114EPSS
Exploits3References5
OSV
OSVadded 2026/01/23 12:24 p.m.4 views

OESA-2026-1245 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

9.8CVSS6.9AI score0.00114EPSS
Exploits3References5
Veracode
Veracodeadded 2026/01/23 4:30 a.m.4 views

Stack Overflow

ImageMagick is vulnerable to a stack overflow. The vulnerability is due to infinite recursion in the MSL Magick Scripting Language command when writing to MSL format, which allows an attacker to trigger a stack overflow and cause a denial-of-service condition...

5.5CVSS6AI score0.00025EPSS
Exploits1References4Affected Software18
RedhatCVE
RedhatCVEadded 2026/01/22 6:14 a.m.3 views

CVE-2026-23952

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

7.5CVSS5.5AI score0.00024EPSS
Exploits1References5
NVD
NVDadded 2026/01/22 1:15 a.m.4 views

CVE-2026-23952

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

7.5CVSS0.00024EPSS
Exploits1References2
AlpineLinux
AlpineLinuxadded 2026/01/22 12:32 a.m.3 views

CVE-2026-23952

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

7.5CVSS5.7AI score0.00024EPSS
Exploits1References2
OSV
OSVadded 2026/01/22 12:32 a.m.2 views

CVE-2026-23952 ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

6.5CVSS5.7AI score0.00024EPSS
Exploits1References4
CVE
CVEadded 2026/01/22 12:32 a.m.18 views

CVE-2026-23952

ImageMagick has a NULL pointer dereference in the MSL parser when processing tags before any image loads (CVE-2026-23952). Affected: ImageMagick versions 14.10.1 and earlier. Impact: potential DoS through assertion failure (debug builds) or NULL pointer dereference (release). Mitigation: upgrade...

7.5CVSS5.6AI score0.00024EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/01/22 12:32 a.m.5 views

CVE-2026-23952

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL Magick Scripting Language parser when processing tags before images are loaded. This can lead to DoS attack due to...

6.5CVSS5.3AI score0.00024EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2026/01/21 1:6 a.m.6 views

GHSA-5VX3-WX4Q-6CJ8 ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load

Summary NULL pointer dereference in MSL Magick Scripting Language parser when processing tag before any image is loaded. Version - ImageMagick 7.x tested on current main branch - Commit: HEAD Steps to Reproduce Method 1: Using ImageMagick directly bash magick MSL:poc.msl out.png Method 2: Using...

6.5CVSS5.6AI score0.00024EPSS
Exploits1References3
Github Security Blog
Github Security Blogadded 2026/01/21 1:6 a.m.6 views

ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load

Summary NULL pointer dereference in MSL Magick Scripting Language parser when processing tag before any image is loaded. Version - ImageMagick 7.x tested on current main branch - Commit: HEAD Steps to Reproduce Method 1: Using ImageMagick directly bash magick MSL:poc.msl out.png Method 2: Using...

7.5CVSS5.5AI score0.00024EPSS
Exploits1References3Affected Software19
Snyk
Snykadded 2026/01/21 1:6 a.m.1 views

NULL Pointer Dereference

Overview Magick.NET-Q16-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

7.5CVSS5.7AI score0.00024EPSS
Exploits1References2
OSV
OSVadded 2026/01/21 1:5 a.m.4 views

GHSA-9VJ4-WC7R-P844 ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript

Summary Stack overflow via infinite recursion in MSL Magick Scripting Language command when writing to MSL format. Version - ImageMagick 7.x tested on current main branch - Commit: HEAD - Requires: libxml2 support for MSL parsing Steps to Reproduce Method 1: Using ImageMagick directly bash magick...

5.5CVSS5.6AI score0.00025EPSS
Exploits1References4
EUVD
EUVDadded 2026/01/21 1:5 a.m.3 views

EUVD-2026-3588

ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript...

5.5CVSS5.3AI score0.00025EPSS
Exploits1References3
Rows per page
Query Builder