| CVE-2026-46522 |
high |
— |
9.0 |
|
|
|
12d ago |
ImageMagick: Infinite Loop in the MIFF decoder can lead to CPU exhaustion |
| CVE-2026-46520 |
high |
— |
8.0 |
|
|
|
12d ago |
ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions |
| CVE-2026-47166 |
medium |
— |
5.5 |
|
|
|
8d ago |
ImageMagick: Heap Buffer Over-Read in distributed pixel cache server |
| CVE-2026-47165 |
medium |
— |
5.5 |
|
|
|
8d ago |
ImageMagick: Information Disclosure in distributed pixel cache server because it is not using a challenge–response authentication model |
| CVE-2026-46693 |
medium |
— |
5.5 |
|
|
|
8d ago |
ImageMagick: Race Condition in distributed pixel cache server can result in file descriptor hijacking |
| CVE-2026-46692 |
medium |
— |
5.5 |
|
|
|
8d ago |
ImageMagick: Heap Buffer Over-Write in distributed pixel cache server |
| CVE-2026-46559 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Heap Buffer Over-Write of a single byte in the JP2 encoder. |
| CVE-2026-46557 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Stack overflow in fx operation |
| CVE-2026-46523 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Use-After-Free in MSL decoder. |
| CVE-2026-46521 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Heap Buffer Over-Write in MIFF encoder when using LZMA compression |
| CVE-2026-45664 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Policy Bypass in MNG coder could |
| CVE-2026-45624 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Heap Buffer Over-Read of a 4 bytes in distort operation. |
| CVE-2026-45031 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Policy Bypass in PSD decoder |
| CVE-2026-45358 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Out-of-Bounds Read of a single byte in meta encoder |
| CVE-2026-45359 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Out-of-Bounds Read in connected components when the user supplies an invalid keep-top define |
| CVE-2026-42326 |
medium |
— |
5.5 |
|
|
|
12d ago |
ImageMagick: Heap Buffer Over-Read in IPTC encoder |
| CVE-2026-40311 |
medium |
— |
5.5 |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below 7.1.2-19 and 6.9.13-44 contain a heap use-after-free vulnerability that can cause a crash… |
| CVE-2026-40312 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, an off by one error in the MSL decoder could result in a crash when a malico… |
| CVE-2026-40310 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below both 7.1.2-19 and 6.9.13-44, contain a heap out-of-bounds write in the JP2 encoder with w… |
| CVE-2026-40183 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, the JXL encoder has an heap write overflow when a user specifies that the im… |
| CVE-2026-40169 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, a crafted image could result in an out of bounds heap write when writing a y… |
| CVE-2026-33905 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the -sample operation has an out of bounds read when an s… |
| CVE-2026-33902 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a stack overflow vulnerability in ImageMagick's FX expres… |
| CVE-2026-33901 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a heap buffer overflow occurs in the MVG decoder that cou… |
| CVE-2026-33908 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, Magick frees the memory of the XML tree via the `DestroyX… |
| CVE-2026-33899 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-189 and 6.9.13-44, when `Magick` parses an XML file it is possible that a single… |
| CVE-2026-33536 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incr… |
| CVE-2026-33535 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` inter… |
| CVE-2026-32636 |
unknown |
— |
— |
|
|
|
2mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-17 and 6.9.13-42, the NewXMLTree method contains a bug that could result in a crash due t… |
| CVE-2023-1289 |
unknown |
— |
— |
|
|
|
3mo ago |
A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file … |
| CVE-2026-30937 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a 32-bit unsigned integer overflow in the XWD (X Windows) enco… |
| CVE-2026-30936 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a crafted image could cause an out of bounds heap write inside… |
| CVE-2026-30935 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, BilateralBlurImage contains a heap buffer over-read caused by an incorrect c… |
| CVE-2026-30931 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, a heap-based buffer overflow in the UHDR encoder can happen due to truncatio… |
| CVE-2026-30929 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MagnifyImage uses a fixed-size stack buffer. When using a spec… |
| CVE-2026-28693 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an integer overflow in DIB coder can result in out of bounds r… |
| CVE-2026-28691 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in t… |
| CVE-2026-28690 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encode… |
| CVE-2026-28688 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap-use-after-free vulnerability exists in the MSL encoder,… |
| CVE-2026-28687 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a heap use-after-free vulnerability in ImageMagick's MSL decod… |
| CVE-2026-28686 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, A heap-buffer-overflow vulnerability exists in the PCL encode … |
| CVE-2026-28494 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow exists in ImageMagick's morphology ker… |
| CVE-2026-28493 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16, an integer overflow vulnerability exists in the SIXEL decoer. The vulnerabil… |
| CVE-2026-26284 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick lacks proper boundary checking when processing Huf… |
| CVE-2026-25986 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer overflow write vulnerability exists in ReadYUVIm… |
| CVE-2026-25982 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap out-of-bounds read vulnerability exists in the `coders/… |
| CVE-2026-25971 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for circular references between two MSLs… |
| CVE-2026-25970 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a signed integer overflow vulnerability in ImageMagick's SIXEL… |
| CVE-2026-25968 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a stack buffer overflow occurs when processing the an attribut… |
| CVE-2026-31853 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when… |
| CVE-2026-30883 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overfl… |
| CVE-2026-28692 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, MAT decoder uses 32-bit arithmetic due to incorrect parenthesi… |
| CVE-2026-28689 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/… |
| CVE-2026-27799 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the DJVU image… |
| CVE-2026-27798 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing a… |
| CVE-2026-26983 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL interpreter crashes when processing a invalid `<map>` … |
| CVE-2026-26283 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a `continue` statement in the JPEG extent binary search loop i… |
| CVE-2026-26066 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infin… |
| CVE-2026-25989 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file can cause a denial of service. An off-by-on… |
| CVE-2026-25987 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in the MAP image … |
| CVE-2026-25985 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file containing an malicious element causes Imag… |
| CVE-2026-25983 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted MSL script triggers a heap-use-after-free. The opera… |
| CVE-2026-25969 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak exists in `coders/ashlar.c`. The `WriteASHLARImage` allocates a… |
| CVE-2026-25965 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick’s path security policy is enforced on the raw file… |
| CVE-2026-25897 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, an Integer Overflow vulnerability exists in the sun decoder. O… |
| CVE-2026-25799 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an inva… |
| CVE-2026-25797 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails… |
| CVE-2026-25796 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSTEGANOImage()` (`coders/stegano.c`), the `watermark` … |
| CVE-2026-25795 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in `ReadSFWImage()` (`coders/sfw.c`), when temporary file crea… |
| CVE-2026-25794 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. `WriteUHDRImage` in `coders/uhdr.c` uses `int` arithmetic to compute the pixel buffer size. Prior to ver… |
| CVE-2026-25638 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, memory leak exists in `coders/msl.c`. In the `WriteMSLImage` f… |
| CVE-2026-25637 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak in the ASHLAR image writer allows an attacker to exhaust proces… |
| CVE-2026-25576 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability exists in multiple raw i… |
| CVE-2026-24485 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the Deco… |
| CVE-2026-24484 |
unknown |
— |
— |
|
|
|
3mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions t… |
| CVE-2026-23952 |
unknown |
— |
— |
|
|
|
4mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting La… |
| CVE-2026-23874 |
unknown |
— |
— |
|
|
|
4mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL (Magick Scripting Languag… |
| CVE-2026-22770 |
unknown |
— |
— |
|
|
|
4mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in … |
| CVE-2025-68950 |
unknown |
— |
— |
|
|
|
5mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a … |
| CVE-2025-65955 |
unknown |
— |
— |
|
|
|
6mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests … |
| CVE-2025-62594 |
unknown |
— |
— |
|
|
|
7mo ago |
ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and div… |
| CVE-2025-57807 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob(), which permits advancing … |
| CVE-2025-55298 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in Interpr… |
| CVE-2025-55212 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to mont… |
| CVE-2025-55160 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, there is undefined behavior (function-type-mismatch) in splay t… |
| CVE-2025-55154 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage (in coders/p… |
| CVE-2025-55004 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, ImageMagick is vulnerable to heap-buffer overflow read around the handling of … |
| CVE-2025-68469 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fix… |
| CVE-2025-53019 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick stream` command, specifying multipl… |
| CVE-2025-53014 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 and 6.9.13-26 have a heap buffer overflow in the `InterpretImageFilename` func… |
| CVE-2025-53101 |
unknown |
— |
— |
|
|
|
9mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick mogrify` command, specifying multip… |
| CVE-2025-53015 |
unknown |
— |
— |
|
|
|
10mo ago |
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion co… |