Lucene search
K

882 matches found

OSV
OSV
added 2 days ago2 views

DEBIAN-CVE-2026-56363

ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An attacker can supply a large binomial kernel value causing integer overflow, resulting in division by zero and application crash...

3.3CVSS5.8AI score0.00111EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2 days ago4 views

CVE-2026-56369

ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can exploit nonce reuse in the cipher implementation to recover plaintext information from encrypted images...

6.3CVSS5.8AI score0.00229EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2 days ago4 views

PT-2026-54046

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-24 Description An incorrect policy check allows remote attackers to bypass path policy restrictions in sandboxed conversion services. This flaw enables the creation or truncation of files that are disallowed...

4.8CVSS5.9AI score0.00175EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/21 1:26 p.m.8 views

EUVD-2026-38173

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...

6.3CVSS5.9AI score0.00236EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in imagemagick

A vulnerability was discovered in ImageMagick, causing a value of type ‘unsigned long’ to fall outside the representable value range when crafted or untrusted input is processed in the coders/pcl.c file. This results in a negative impact on the availability of the application or other issues...

7.8CVSS6.6AI score0.01339EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in imagemagick

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, there was a format string bug vulnerability in the InterpretImageFilename function, where user input was directly passed to FormatLocaleString withou...

8.8CVSS7.7AI score0.04065EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.10 views

Astra Linux – Vulnerability in imagemagick

In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets were causing undefined behavior, including integer overflow and out-of-range values, as reported by UndefinedBehaviorSanitizer. Such issues could negatively...

4.3CVSS6.6AI score0.01072EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in imagemagick

In ImageMagick, there is a value of the type 'unsigned int' that is outside the representable range in MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

4.3CVSS6.5AI score0.01362EPSS
Exploits0References2
Redos
Redos
added 2026/06/18 12:0 a.m.6 views

ROS-20260618-73-0008

The vulnerability of the ReadXBMImage function in the console-based ImageMagick graphics editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

9.8CVSS5.9AI score0.00609EPSS
Exploits1
Redos
Redos
added 2026/06/17 12:0 a.m.5 views

ROS-20260617-73-0001

The vulnerability in ImageMagick 7 is related to the lack of memory release after the effective lifespan of the component. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.3CVSS7.6AI score0.00325EPSS
Exploits0
Redos
Redos
added 2026/06/17 12:0 a.m.6 views

ROS-20260617-73-0029

The vulnerability in ImageMagick 7 is related to integer overflow. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.5CVSS5.5AI score0.00275EPSS
Exploits0
Redos
Redos
added 2026/06/17 12:0 a.m.7 views

ROS-20260617-73-0047

The vulnerability in ImageMagick 7 is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS5.5AI score0.00327EPSS
Exploits0
Redos
Redos
added 2026/06/16 12:0 a.m.4 views

ROS-20260616-73-0023

The vulnerability in ImageMagick 7 is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

8.1CVSS5.5AI score0.00334EPSS
Exploits0
Redos
Redos
added 2026/06/16 12:0 a.m.4 views

ROS-20260616-73-0016

The vulnerability in ImageMagick is related to an unvalidated return value. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS5.3AI score0.00353EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/13 1:18 a.m.9 views

CVE-2026-46557 vulnerabilities

Vulnerabilities for packages: imagemagick...

6.2CVSS5.1AI score0.0012EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-48733

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, an infinite loop in the...

4.7CVSS5.8AI score0.00092EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53463

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, when passing incorrect...

4.3CVSS5.8AI score0.00187EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/10 11:38 p.m.10 views

CVE-2026-42326

A flaw was found in ImageMagick, a software used for editing and manipulating digital images. A local attacker could exploit this vulnerability by providing a malicious input file. When ImageMagick attempts to write an IPTC output file, this malicious input could cause the software to read beyond...

5.1CVSS5AI score0.0012EPSS
Exploits0References4
Snyk
Snyk
added 2026/06/10 11:12 p.m.9 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the CheckPrimitiveExtent function. An attacker can cause a crash by triggering a failed memory allocation, leading to use of freed memory. Remediation A fix was pushed into the master branch but not yet published...

8.2CVSS5.3AI score0.00227EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/06/10 9:55 p.m.7 views

CVE-2026-48734

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, a crafted MVG file could result in a stack overflow due to a missing depth or visited-set check. This issue has been patched in versions 6.9.13-49 and 7.1.2-24...

5.5CVSS5.4AI score0.00107EPSS
Exploits0References1
Rows per page
Query Builder