| CVE-2026-46522 |
high |
— |
8.0 |
9d ago |
ImageMagick: Infinite Loop in the MIFF decoder can lead to CPU exhaustion |
|
| CVE-2026-46520 |
high |
— |
8.0 |
9d ago |
ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions |
|
| CVE-2026-47166 |
medium |
— |
5.5 |
5d ago |
ImageMagick: Heap Buffer Over-Read in distributed pixel cache server |
|
| CVE-2026-47165 |
medium |
— |
5.5 |
5d ago |
ImageMagick: Information Disclosure in distributed pixel cache server because it is not using a challenge–response authentication model |
|
| CVE-2026-46693 |
medium |
— |
5.5 |
5d ago |
ImageMagick: Race Condition in distributed pixel cache server can result in file descriptor hijacking |
|
| CVE-2026-46692 |
medium |
— |
5.5 |
5d ago |
ImageMagick: Heap Buffer Over-Write in distributed pixel cache server |
|
| CVE-2026-46559 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Heap Buffer Over-Write of a single byte in the JP2 encoder. |
|
| CVE-2026-46557 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Stack overflow in fx operation |
|
| CVE-2026-46523 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Use-After-Free in MSL decoder. |
|
| CVE-2026-46521 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Heap Buffer Over-Write in MIFF encoder when using LZMA compression |
|
| CVE-2026-45664 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Policy Bypass in MNG coder could |
|
| CVE-2026-45624 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Heap Buffer Over-Read of a 4 bytes in distort operation. |
|
| CVE-2026-45031 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Policy Bypass in PSD decoder |
|
| CVE-2026-45358 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Out-of-Bounds Read of a single byte in meta encoder |
|
| CVE-2026-45359 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Out-of-Bounds Read in connected components when the user supplies an invalid keep-top define |
|
| CVE-2026-42326 |
medium |
— |
5.5 |
9d ago |
ImageMagick: Heap Buffer Over-Read in IPTC encoder |
|
| CVE-2026-40311 |
medium |
— |
5.5 |
1mo ago |
ImageMagick has a heap-use-after-free via XMP profile could result in a crash when printing the values. |
|
| CVE-2026-40312 |
unknown |
— |
— |
1mo ago |
ImageMagick has an off-by-one error in MSL decoder could result in crash |
|
| CVE-2026-40310 |
unknown |
— |
— |
1mo ago |
ImageMagick has a heap out-of-bounds write in JP2 encoder |
|
| CVE-2026-40183 |
unknown |
— |
— |
1mo ago |
ImageMagick has a heap buffer overflow when encoding JXL image with a 16-bit float |
|
| CVE-2026-40169 |
unknown |
— |
— |
1mo ago |
ImageMagick has a heap buffer overflow (WRITE) in the YAML and JSON encoders. |
|
| CVE-2026-33905 |
unknown |
— |
— |
1mo ago |
ImageMagick has an out-of-bounds read in sample operation |
|
| CVE-2026-33902 |
unknown |
— |
— |
1mo ago |
ImageMagick has a Stack Overflow via Recursive FX Expression Parsing |
|
| CVE-2026-33901 |
unknown |
— |
— |
1mo ago |
ImageMagick has a heap Buffer Overflow in ImageMagick MVG decoder |
|
| CVE-2026-33908 |
unknown |
— |
— |
1mo ago |
ImageMagick has a Stack Overflow in DestroyXMLTree() |
|
| CVE-2026-33899 |
unknown |
— |
— |
1mo ago |
ImageMagick has a heap-Buffer-Overflow write of a single zero byte when parsing xml. |
|
| CVE-2026-34238 |
unknown |
— |
— |
1mo ago |
ImageMagick has an integer overflow in despeckle operation causing a heap buffer overflow on 32-bit builds |
|
| CVE-2026-33900 |
unknown |
— |
— |
1mo ago |
ImageMagick has a heap overflow caused by integer overflow/wraparound in viff encoder on 32-bit builds |
|
| CVE-2026-33536 |
unknown |
— |
— |
2mo ago |
ImageMagick has an Out-of-bounds Write via InterpretImageFilename |
|
| CVE-2026-33535 |
unknown |
— |
— |
2mo ago |
ImageMagick has an Out-of-Bounds write of a zero byte in its X11 display interaction |
|
| CVE-2026-32636 |
unknown |
— |
— |
2mo ago |
ImageMagick has a heap-buffer-overflow in NewXMLTree which could result in crash |
|
| CVE-2023-1289 |
unknown |
— |
— |
3mo ago |
ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS |
|
| CVE-2026-30937 |
unknown |
— |
— |
3mo ago |
ImageMagick has heap buffer overflow in WriteXWDImage due to CARD32 arithmetic overflow in bytes_per_line calculation |
|
| CVE-2026-30936 |
unknown |
— |
— |
3mo ago |
ImageMagick has Heap Buffer Overflow in WaveletDenoiseImage |
|
| CVE-2026-30935 |
unknown |
— |
— |
3mo ago |
ImageMagick has Heap Buffer Over-Read in BilateralBlurImage |
|
| CVE-2026-30931 |
unknown |
— |
— |
3mo ago |
ImageMagick has heap-based buffer overflow in UHDR encoder |
|
| CVE-2026-30929 |
unknown |
— |
— |
3mo ago |
ImageMagick has stack buffer overflow in MagnifyImage |
|
| CVE-2026-28693 |
unknown |
— |
— |
3mo ago |
ImageMagick: Integer overflow in DIB coder can result in out of bounds read or write |
|
| CVE-2026-28691 |
unknown |
— |
— |
3mo ago |
ImageMagick has uninitialized pointer dereference in JBIG decoder |
|
| CVE-2026-28690 |
unknown |
— |
— |
3mo ago |
ImageMagick has stack write buffer overflow in MNG encoder |
|
| CVE-2026-28688 |
unknown |
— |
— |
3mo ago |
ImageMagick has heap use-after-free in the MSL encoder |
|
| CVE-2026-28687 |
unknown |
— |
— |
3mo ago |
ImageMagick has Heap Use-After-Free in ImageMagick MSL decoder |
|
| CVE-2026-28686 |
unknown |
— |
— |
3mo ago |
ImageMagick: Write heap-buffer-overflow in PCL encoder via undersized output buffer |
|
| CVE-2026-28494 |
unknown |
— |
— |
3mo ago |
ImageMagick vulnerable to stack corruption through long morphology kernel names or arrays |
|
| CVE-2026-28493 |
unknown |
— |
— |
3mo ago |
ImageMagick has Integer Overflow leading to out of bounds write in SIXEL decoder |
|
| CVE-2026-26284 |
unknown |
— |
— |
3mo ago |
ImageMagick: Heap overflow in pcd decoder leads to out of bounds read. |
|
| CVE-2026-25986 |
unknown |
— |
— |
3mo ago |
ImageMagick has heap buffer overflow in YUV 4:2:2 decoder |
|
| CVE-2026-25982 |
unknown |
— |
— |
3mo ago |
ImageMagick has Heap Out-of-Bounds Read in DCM Decoder (ReadDCMImage) |
|
| CVE-2026-25971 |
unknown |
— |
— |
3mo ago |
ImageMagick: MSL - Stack overflow in ProcessMSLScript |
|
| CVE-2026-25970 |
unknown |
— |
— |
3mo ago |
ImageMagick Has Signed Integer Overflow in SIXEL Decoder, Leading to Memory Corruption |
|
| CVE-2026-25968 |
unknown |
— |
— |
3mo ago |
ImageMagick: MSL attribute stack buffer overflow leads to out of bounds write. |
|
| CVE-2026-31853 |
unknown |
— |
— |
3mo ago |
ImageMagick is vulnerable to heap buffer over-write on 32-bit systems in SFW decoder |
|
| CVE-2026-30883 |
unknown |
— |
— |
3mo ago |
ImageMagick is vulnerable to Heap Overflow when writing extremely large image profile in the PNG encoder |
|
| CVE-2026-28692 |
unknown |
— |
— |
3mo ago |
ImageMagick has a heap buffer over-read via 32-bit integer overflow in MAT decoder |
|
| CVE-2026-28689 |
unknown |
— |
— |
3mo ago |
ImageMagick has a Path Policy TOCTOU symlink race bypass |
|
| CVE-2026-27799 |
unknown |
— |
— |
3mo ago |
ImageMagick has a heap Buffer Over-read in its DJVU image format handler |
|
| CVE-2026-27798 |
unknown |
— |
— |
3mo ago |
ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images |
|
| CVE-2026-25984 |
unknown |
— |
— |
3mo ago |
ImageMagick: Integer Overflow in PSB (PSD v2) RLE decoding path causes heap Out of Bounds reads for 32-bit builds |
|
| CVE-2026-26983 |
unknown |
— |
— |
3mo ago |
ImageMagick: Invalid MSL <map> can result in a use after free |
|
| CVE-2026-26283 |
unknown |
— |
— |
3mo ago |
ImageMagick has a possible infinite loop in its JPEG encoder when using `jpeg:extent` |
|
| CVE-2026-26066 |
unknown |
— |
— |
3mo ago |
ImageMagick has infinite loop when writing IPTCTEXT leads to denial of service via crafted profile |
|
| CVE-2026-25989 |
unknown |
— |
— |
3mo ago |
ImageMagick: Integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoder |
|
| CVE-2026-25988 |
unknown |
— |
— |
3mo ago |
ImageMagick: MSL image stack index may fail to refresh, leading to leaked images |
|
| CVE-2026-25987 |
unknown |
— |
— |
3mo ago |
ImageMagick has a heap buffer over-read in its MAP image decoder |
|
| CVE-2026-25985 |
unknown |
— |
— |
3mo ago |
ImageMagick: Memory allocation with excessive without limits in the internal SVG decoder |
|
| CVE-2026-25983 |
unknown |
— |
— |
3mo ago |
ImageMagick has Use After Free in MSLStartElement in "coders/msl.c" |
|
| CVE-2026-25969 |
unknown |
— |
— |
3mo ago |
Image Magick has a Memory Leak in coders/ashlar.c |
|
| CVE-2026-25967 |
unknown |
— |
— |
3mo ago |
ImageMagick: Stack buffer overflow in FTXT reader via oversized integer field |
|
| CVE-2026-25966 |
unknown |
— |
— |
3mo ago |
ImageMagick's Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout access |
|
| CVE-2026-25965 |
unknown |
— |
— |
3mo ago |
ImageMagick: Policy bypass through path traversal allows reading restricted content despite secured policy |
|
| CVE-2026-25898 |
unknown |
— |
— |
3mo ago |
ImageMagick has Global Buffer Overflow (OOB Read) via Negative Pixel Index in UIL and XPM Writer |
|
| CVE-2026-25897 |
unknown |
— |
— |
3mo ago |
ImageMagick: Heap overflow in sun decoder on 32-bit systems may result in out of bounds write |
|
| CVE-2026-25799 |
unknown |
— |
— |
3mo ago |
ImageMagick has Division-by-Zero in YUV sampling factor validation, which leads to crash |
|
| CVE-2026-25798 |
unknown |
— |
— |
3mo ago |
ImageMagick has NULL Pointer Dereference in ClonePixelCacheRepository via crafted image |
|
| CVE-2026-25797 |
unknown |
— |
— |
3mo ago |
ImageMagick: Code Injection via PostScript header in ps coders |
|
| CVE-2026-25796 |
unknown |
— |
— |
3mo ago |
ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths |
|
| CVE-2026-25795 |
unknown |
— |
— |
3mo ago |
ImageMagick has NULL pointer dereference in ReadSFWImage after DestroyImageInfo (sfw.c) |
|
| CVE-2026-25794 |
unknown |
— |
— |
3mo ago |
ImageMagick has heap-buffer-overflow via signed integer overflow in WriteUHDRImage when writing UHDR images with large dimensions |
|
| CVE-2026-25638 |
unknown |
— |
— |
3mo ago |
ImageMagick has memory leak in msl encoder |
|
| CVE-2026-25637 |
unknown |
— |
— |
3mo ago |
ImageMagick: Possible memory leak in ASHLAR encoder |
|
| CVE-2026-25576 |
unknown |
— |
— |
3mo ago |
ImageMagick: Out of bounds read in multiple coders read raw pixel data |
|
| CVE-2026-24485 |
unknown |
— |
— |
3mo ago |
ImageMagick: Infinite loop vulnerability when parsing a PCD file |
|
| CVE-2026-24484 |
unknown |
— |
— |
3mo ago |
ImageMagick: Converting multi-layer nested MVG to SVG can cause DoS |
|
| CVE-2026-24481 |
unknown |
— |
— |
3mo ago |
ImageMagick has Possible Heap Information Disclosure in PSD ZIP Decompression |
|
| CVE-2026-23952 |
unknown |
— |
— |
4mo ago |
ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load |
|
| CVE-2026-23874 |
unknown |
— |
— |
4mo ago |
ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript |
|
| CVE-2026-22770 |
unknown |
— |
— |
4mo ago |
ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails |
|
| CVE-2025-68950 |
unknown |
— |
— |
5mo ago |
ImageMagick's failure to limit MVG mutual causes Stack Overflow |
|
| CVE-2025-68618 |
unknown |
— |
— |
5mo ago |
ImageMagick's failure to limit the depth of SVG file reads caused a DoS attack |
|
| CVE-2025-66628 |
unknown |
— |
— |
6mo ago |
ImageMagick is vulnerable to an integer Overflow in TIM decoder leading to out of bounds read (32-bit only) |
|
| CVE-2025-65955 |
unknown |
— |
— |
6mo ago |
Withdrawn Advisory: ImageMagick has a use-after-free/double-free risk in Options::fontFamily when clearing family |
|
| CVE-2025-62171 |
unknown |
— |
— |
7mo ago |
ImageMagick has Integer Overflow in BMP Decoder (ReadBMP) |
|
| CVE-2025-57803 |
unknown |
— |
— |
9mo ago |
ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow |
|
| CVE-2025-55298 |
unknown |
— |
— |
9mo ago |
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution |
|
| CVE-2025-55212 |
unknown |
— |
— |
9mo ago |
ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash |
|
| CVE-2025-55160 |
unknown |
— |
— |
9mo ago |
ImageMagick has Undefined Behavior (function-type-mismatch) in CloneSplayTree |
|
| CVE-2025-55154 |
unknown |
— |
— |
9mo ago |
imagemagick: integer overflows in MNG magnification |
|
| CVE-2025-55004 |
unknown |
— |
— |
9mo ago |
imagemagick: heap-buffer overflow read in MNG magnification with alpha |
|
| CVE-2025-68469 |
unknown |
— |
— |
9mo ago |
ImageMagick has a heap-buffer-overflow |
|
| CVE-2025-53019 |
unknown |
— |
— |
9mo ago |
ImageMagick has a Memory Leak in magick stream |
|