Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

Snyk
Snykadded 2026/05/18 8:37 p.m.3 views

Out-of-bounds Write

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

5.1CVSS5.9AI score
Exploits0References3
Snyk
Snykadded 2026/05/18 8:36 p.m.1 views

Infinite loop

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.8CVSS5.8AI score
Exploits0References5
OSV
OSVadded 2026/05/14 6:40 p.m.1 views

CLSA-2026-1778767103 Fix CVE(s): CVE-2026-25576, CVE-2026-28688, CVE-2026-28690

Security: - CVE-2026-25576: heap buffer over-read in raw pixel coders - CVE-2026-28688: use-after-free in MSL encoder - CVE-2026-28690: stack-based buffer overflow in MNG/JNG encoder...

6.9CVSS7.6AI score0.00047EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2026/04/14 11:32 p.m.6 views

ImageMagick has a memory leak in PNG encoder when writing a MNG image

When the PNG encoder fails to write an MNG image it can leak memory...

5.8AI score
Exploits0References2Affected Software18
Snyk
Snykadded 2026/04/14 11:32 p.m.0 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

6.3CVSS5.8AI score
Exploits0References2
Snyk
Snykadded 2026/04/14 11:32 p.m.2 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.3CVSS5.8AI score
Exploits0References2
Snyk
Snykadded 2026/04/14 11:32 p.m.1 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.3CVSS5.8AI score
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/04/14 6:51 p.m.2 views

ImageMagick has a heap out-of-bounds write in JP2 encoder

Heap out-of-bounds write in the JP2 encoder with when a user specifies an invalid sampling index...

5.5CVSS5.8AI score0.00006EPSS
Exploits0References6Affected Software16
Snyk
Snykadded 2026/03/12 2:9 p.m.2 views

Heap-based Buffer Overflow

Overview Magick.NET-Q8-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.2CVSS5.8AI score0.00019EPSS
Exploits0References2
Snyk
Snykadded 2026/03/12 2:9 p.m.0 views

Heap-based Buffer Overflow

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.2CVSS5.8AI score0.00019EPSS
Exploits0References2
Snyk
Snykadded 2026/03/10 9:5 p.m.2 views

Out-of-bounds Write

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.6CVSS6AI score0.00009EPSS
Exploits0References2
Snyk
Snykadded 2026/03/09 9:38 p.m.1 views

Use After Free

Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00047EPSS
Exploits0References2
Snyk
Snykadded 2026/03/09 9:38 p.m.3 views

Use After Free

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

5.5CVSS5.8AI score0.00047EPSS
Exploits0References2
Snyk
Snykadded 2026/03/09 9:38 p.m.3 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the MSL encoder, when destroying a cloned image. Workaround This vulnerability can be mitigated by disabling the vulnerable encoder by adding to the policy.xml file. Remediation A fix was pushed into the master branch...

5.5CVSS5.7AI score0.00047EPSS
Exploits0References2
Snyk
Snykadded 2026/03/09 9:38 p.m.2 views

Use After Free

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

5.5CVSS5.8AI score0.00047EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/02/24 1:55 a.m.17 views

CVE-2026-26283 ImageMagick has possible infinite loop in JPEG encoder when using `jpeg:extent`

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

6.2CVSS0.0002EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2026/01/27 9:30 a.m.5 views

Quick-Media Batik Codec FIX package has Code Injection vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects all...

5.3CVSS5.9AI score0.00092EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2026/01/27 9:30 a.m.2 views

GHSA-8623-9FWR-4CXV Quick-Media Batik Codec FIX package has Code Injection vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects all...

5.3CVSS5.9AI score0.00092EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/01/27 8:42 a.m.3 views

CVE-2026-24806

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects quick-media...

5.3CVSS5.9AI score0.00092EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/01/27 8:42 a.m.2 views

CVE-2026-24806 Buffer Write Security Vulnerability in liuyueyi/quick-media

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects quick-media...

5.3CVSS5.9AI score0.00092EPSS
Exploits0References1
Rows per page
Query Builder