Lucene search
K

13 matches found

EUVD
EUVD
added 2026/06/25 9:53 p.m.10 views

EUVD-2026-36185

ImageMagick: Policy Bypass can read disallowed files via symlink...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/25 9:50 p.m.10 views

EUVD-2026-36183

ImageMagick has a Heap Buffer Over-Write in MAT decoder on 32-bit systems...

5.9CVSS5.8AI score0.00227EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/12 2:26 a.m.7 views

SUSE CVE-2026-45359

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-22, an invalid connected-components:keep-top value could result in a heap buffer over-read when performing the connected components operation. This issue has been...

5.7CVSS5.4AI score0.00122EPSS
Exploits0References4
NVD
NVD
added 2026/06/10 10:16 p.m.13 views

CVE-2026-46522

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2.23 and 6.9.13-48, due to a missing check in the MIFF decoder, a crafted file could cause an infinite loop resulting in CPU exhaustion. Versions 7.1.2.23 and 6.9.13-48 fix the iss...

7.5CVSS0.01849EPSS
Exploits4References5
Vulnrichment
Vulnrichment
added 2026/06/10 10:0 p.m.9 views

CVE-2026-49219 ImageMagick: Policy Bypass can read disallowed files

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-24, an incorrect parsing of the filename can result in a policy bypass and read files disallowed by a security policy using a symlink. This issue has been patched i...

5.5CVSS5.4AI score0.00128EPSS
Exploits0References1
CVE
CVE
added 2026/06/10 10:0 p.m.48 views

CVE-2026-49219

Technical details are not publicly available in the provided documents. Monitor for updates.

5.5CVSS5.4AI score0.00128EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/10 9:50 p.m.10 views

EUVD-2026-36177

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, the distributed pixel cache was originally designed to operate without a challenge–response authentication model. This has been changed in versions 6.9.13-48 an...

4.1CVSS5.4AI score0.00109EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/10 9:50 p.m.8 views

CVE-2026-47165

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, the distributed pixel cache was originally designed to operate without a challenge–response authentication model. This has been changed in versions 6.9.13-48 an...

4.1CVSS5.4AI score0.00109EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/06/10 9:46 p.m.10 views

CVE-2026-46692 ImageMagick: Heap Buffer Over-Write in distributed pixel cache server

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-write in the server process. This issue has been patched in...

4.1CVSS5.5AI score0.00092EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/10 9:46 p.m.11 views

EUVD-2026-36174

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-write in the server process. This issue has been patched in...

4.1CVSS5.5AI score0.00092EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/06/10 9:45 p.m.10 views

CVE-2026-46559

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying certain options. This issue has been patched in versions...

4CVSS5.5AI score0.00116EPSS
Exploits0
CVE
CVE
added 2026/06/10 9:22 p.m.48 views

CVE-2026-46523

CVE-2026-46523 is a use-after-free in ImageMagick’s MSL image handling. A crafted MSL image can trigger a heap-use-after-free, affecting versions prior to 7.1.2.23 and 6.9.13-48. The issue is fixed in 7.1.2.23 and 6.9.13-48. If you rely on ImageMagick, upgrade to one of the fixed releases to reme...

7.5CVSS5.4AI score0.00301EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.14 views

PT-2026-48565

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.13-48 ImageMagick versions prior to 7.1.2-24 Description A missing check of a return value in the MAT decoder on 32-bit systems can lead to a heap buffer over-write. A heap buffer over-write occurs when a...

7.5CVSS5.7AI score0.00441EPSS
Exploits0References81
Rows per page
Query Builder