Lucene search
K

17 matches found

SUSE CVE
SUSE CVE
added 2026/02/25 12:24 a.m.6 views

SUSE CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

5.3CVSS5.8AI score0.00435EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/02/24 3:43 p.m.9 views

ImageMagick has Use After Free in MSLStartElement in "coders/msl.c"

A crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it, leading to a UAF in ReadBlobString during further parsing...

9.8CVSS5.5AI score0.00435EPSS
Exploits0References5Affected Software19
NVD
NVD
added 2026/02/24 2:16 a.m.10 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS0.00435EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/24 1:41 a.m.24 views

CVE-2026-25983 ImageMagick has Use After Free in MSLStartElement in "coders/msl.c"

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

5.3CVSS0.00435EPSS
Exploits0References1
Snyk
Snyk
added 2026/02/24 1:41 a.m.5 views

Expired Pointer Dereference

Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS5.6AI score0.00435EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:41 a.m.2 views

Expired Pointer Dereference

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS5.6AI score0.00435EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:41 a.m.4 views

Expired Pointer Dereference

Overview Magick.NET-Q16-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS5.6AI score0.00435EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:41 a.m.2 views

Expired Pointer Dereference

Overview Magick.NET-Q16-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

9.8CVSS5.6AI score0.00435EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:41 a.m.4 views

Expired Pointer Dereference

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

9.8CVSS5.6AI score0.00435EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:41 a.m.3 views

Expired Pointer Dereference

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

9.8CVSS5.6AI score0.00435EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/02/24 1:41 a.m.4 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS7.8AI score0.00435EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2026/02/24 1:41 a.m.3 views

CVE-2026-25983

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The operation element handler replaces and frees the image while the parser continues reading from it,...

9.8CVSS5.5AI score0.00435EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.7 views

PT-2026-21633

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40 Description ImageMagick is software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a specially crafted MSL script can...

9.8CVSS5.9AI score0.00501EPSS
Exploits0References157
AlpineLinux
AlpineLinux
added 2025/03/07 6:15 a.m.4 views

CVE-2025-27796

ReadWPGImage in WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocation, resulting in out-of-bounds access to heap memory in ReadBlob...

4.5CVSS7.5AI score0.00356EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:10 a.m.3 views

SUSE CVE-2007-4987

Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writing of a '\0' character to an out-of-bounds address...

9.3CVSS7.7AI score0.03819EPSS
Exploits2References4
OSV
OSV
added 2015/12/31 12:0 a.m.3 views

UBUNTU-CVE-2015-8902

The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service infinite loop via a crafted PDB file...

6.5CVSS7AI score0.01954EPSS
Exploits1References5
OSV
OSV
added 2007/09/24 10:17 p.m.3 views

DEBIAN-CVE-2007-4985

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers 1 an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or 2 an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong...

4.3CVSS6.6AI score0.01814EPSS
Exploits0References1
Rows per page
Query Builder