CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Github Security Blog•added 2026/03/10 9:5 p.m.•4 views

ImageMagick is vulnerable to Heap Overflow when writing extremely large image profile in the PNG encoder

An extremely large image profile could result in a heap overflow when encoding a PNG image...

7.8CVSS5.8AI score0.00123EPSS

Exploits0References4Affected Software19

Snyk•added 2026/03/10 9:5 p.m.•8 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write in Magickpngwriterawprofile in the PNG encoder. An attacker can cause a heap buffer over-write and disrupt application availability or alter program behavior by supplying an image with an extremely large profile...

8.6CVSS5.9AI score0.00123EPSS

RedhatCVE•added 2026/03/10 6:48 p.m.•4 views

CVE-2026-28690

A flaw was found in ImageMagick. Processing a specially crafted image with the MNG encoder can cause a stack-based buffer overflow due to a missing bounds check, leading to a denial of service and potentially arbitrary code execution. Mitigation To mitigate this vulnerability, disable the...

6.9CVSS6.3AI score0.00096EPSS

Exploits0References4

NVD•added 2026/03/10 7:44 a.m.•7 views

CVE-2026-30937

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD X Windows encoder can cause an undersized heap buffer allocation. When writing a extremely large image an out of...

6.8CVSS0.00099EPSS

NVD•added 2026/03/10 7:44 a.m.•5 views

CVE-2026-30931

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncation of a value and it would allow an out of bounds write. This vulnerability is fixed in 7.1.2-16...

7.8CVSS0.00108EPSS

OSV•added 2026/03/10 7:44 a.m.•1 views

DEBIAN-CVE-2026-30931

7.8CVSS8.1AI score0.00108EPSS

OSV•added 2026/03/10 7:44 a.m.•4 views

DEBIAN-CVE-2026-30937

6.1CVSS5.6AI score0.00099EPSS

OSV•added 2026/03/10 7:44 a.m.•3 views

UBUNTU-CVE-2026-30931

7.8CVSS6AI score0.00108EPSS

OSV•added 2026/03/10 7:44 a.m.•2 views

UBUNTU-CVE-2026-30937

6.8CVSS6AI score0.00099EPSS

NVD•added 2026/03/10 7:43 a.m.•5 views

CVE-2026-28690

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data...

6.9CVSS0.00096EPSS

OSV•added 2026/03/10 7:43 a.m.•2 views

UBUNTU-CVE-2026-28688

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder, where a cloned image is destroyed twice. The MSL coder does not support writing MSL so the write...

5.3CVSS5.7AI score0.00193EPSS

RedhatCVE•added 2026/03/10 6:31 a.m.•5 views

CVE-2026-30937

A flaw was found in ImageMagick, a software suite for editing and manipulating digital images. An integer overflow vulnerability exists in the XWD X Windows encoder when processing extremely large images. This flaw can lead to an undersized memory allocation, resulting in an out-of-bounds write t...

6.8CVSS5.8AI score0.00099EPSS

Exploits0References4

RedhatCVE•added 2026/03/10 6:31 a.m.•4 views

CVE-2026-30931

A flaw was found in ImageMagick, a software used for editing and manipulating digital images. A local attacker can exploit a heap-based buffer overflow vulnerability within the UHDR encoder. This vulnerability arises from the truncation of a value, enabling an out-of-bounds write. Successful...

7.8CVSS5.9AI score0.00108EPSS

Exploits0References4

7.8CVSS7.4AI score0.00108EPSS

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-16 contained security vulnerabilities, primarily due to a heap buffer overflow in the UHDR encoder,...

Tenable Nessus•added 2026/03/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-28688

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free...

5.3CVSS7.2AI score0.00193EPSS

Exploits0References3

6.8CVSS6AI score0.00099EPSS

ImageMagick 输入验证错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-16 and 6.9.13-41 contained a vulnerability related to input validation errors. This vulnerability...

Tenable Nessus•added 2026/03/10 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-30931

7.8CVSS7.4AI score0.00108EPSS

8.1CVSS7.4AI score0.00243EPSS

ImageMagick 缓冲区错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-16 and 6.9.13-41 contained a buffer error vulnerability. This vulnerability stemmed from integer...

6.9CVSS7.4AI score0.00096EPSS

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It allows for reading, converting, and writing images in various formats. Versions of ImageMagick prior to 7.1.2-16 and 6.9.13-41 contained security vulnerabilities. These vulnerabilities were due ...