Lucene search
K

1178 matches found

CERT
CERT
added 2026/06/22 12:0 a.m.6 views

Multiple file parsing vulnerabilities in FastStone Image Viewer 8.3.0.0

Overview Two vulnerabilities have been identified in FastStone Image Viewer 8.3 that may allow remote code execution or control-flow corruption when processing specially crafted image files. The affected components include the JPEG 2000 JP2 parser and the PSD file parser. An attacker can exploit...

7.5CVSS7.2AI score0.00571EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.17 views

Amazon Linux 2023 : ImageMagick, ImageMagick-c++, ImageMagick-c++-devel (ALAS2023-2026-1826)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1826 advisory. When writing an IPTC output file a malicious input file could cause an out of bounds read of a single byte. as per:...

7.5CVSS6.7AI score0.01849EPSS
Exploits4References32
NVD
NVD
added 2026/06/21 2:16 p.m.11 views

CVE-2026-56367

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...

9.1CVSS0.00236EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/21 1:26 p.m.8 views

CVE-2026-56367 ImageMagick - Heap Out-of-Bounds Read in PSB RLE Decoding

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...

6.3CVSS5.9AI score0.00236EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/06/21 1:26 p.m.6 views

CVE-2026-56367

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...

6.3CVSS5.9AI score0.00236EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/06/21 1:26 p.m.5 views

CVE-2026-56367

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash...

9.1CVSS5.9AI score0.00236EPSS
Exploits0
CVE
CVE
added 2026/06/21 1:26 p.m.69 views

CVE-2026-56367

ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contain an integer overflow in the PSB (PSD v2) RLE decoding path (ReadPSDChannelRLE in coders/psd.c) that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB file can lead to information disclosure or a crash. Affecte...

9.1CVSS5.9AI score0.00236EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/21 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-56367

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB PSD v2 RLE decoding path ReadPSDChannelRLE in coders/psd.c that...

9.1CVSS6.2AI score0.00236EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/15 2:6 a.m.12 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS7.9AI score0.00755EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/06/15 1:49 a.m.11 views

Important: Red Hat Security Advisory: gimp security update

An update for gimp is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS7.9AI score0.00755EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2026/06/12 2:26 a.m.8 views

SUSE CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

4.3CVSS5.2AI score0.00495EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.8 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : Pillow vulnerabilities (USN-8399-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8399-1 advisory. It was discovered that Pillow incorrectly handled large glyph advance values in fonts. An attacker could possibly use thi...

8.6CVSS6.1AI score0.0015EPSS
Exploits0References5
NVD
NVD
added 2026/06/10 10:16 p.m.12 views

CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

7.5CVSS0.00495EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/10 9:25 p.m.40 views

CVE-2026-45031 ImageMagick: Policy Bypass in PSD decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

5.3CVSS0.00495EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 9:25 p.m.51 views

CVE-2026-45031

ImageMagick (PSD decoder) vulnerability CVE-2026-45031 allows bypass of the list-length resource policy when decoding PSD images. Affected versions are 6.9.13-47 and 7.1.2-22; other security limits still apply. Patch available in the referenced releases (6.9.13-47, 7.1.2-22).

7.5CVSS5.3AI score0.00495EPSS
Exploits0References5Affected Software1
EUVD
EUVD
added 2026/06/10 9:25 p.m.12 views

EUVD-2026-36157

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

5.3CVSS5.3AI score0.00495EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/10 9:25 p.m.10 views

CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

7.5CVSS5.3AI score0.00495EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/10 9:25 p.m.10 views

CVE-2026-45031

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, due to a missing check in the PSD decoder it would be possible to bypass the list-length resource policy when decoding a PSD image. Other security limits would...

7.5CVSS5.3AI score0.00495EPSS
Exploits0
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.18 views

ImageMagick 资源管理错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 6.9.13-47 and 7.1.2-22 contained a resource management vulnerability. This vulnerability stemmed from a...

7.5CVSS5.3AI score0.00495EPSS
Exploits0References2
OSV
OSV
added 2026/06/08 12:43 p.m.9 views

USN-8399-1 pillow vulnerabilities

It was discovered that Pillow incorrectly handled large glyph advance values in fonts. An attacker could possibly use this issue to cause Pillow to crash, resulting in a denial of service. CVE-2026-42308 It was discovered that Pillow incorrectly handled nested coordinate lists in certain APIs. An...

8.6CVSS7.6AI score0.0015EPSS
Exploits0References5
Rows per page
Query Builder