Imagemagick

Imagemagick

672 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.2

CVE-2025-24293

  • EPSS 0.13%
  • Veröffentlicht 30.01.2026 20:11:15
  • Zuletzt bearbeitet 04.02.2026 16:34:21

# Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potentially unsafe image transformation methods and parameters by default. The default allowed list contains three methods allow f...

6.5

CVE-2026-23952

  • EPSS 0.04%
  • Veröffentlicht 22.01.2026 00:32:52
  • Zuletzt bearbeitet 26.01.2026 15:04:59

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing <comment> tags befor...

9.8

CVE-2026-22770

  • EPSS 0.06%
  • Veröffentlicht 20.01.2026 01:15:57
  • Zuletzt bearbeitet 29.01.2026 14:56:04

ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last element in the...

5.5

CVE-2026-23874

Exploit
  • EPSS 0.01%
  • Veröffentlicht 20.01.2026 01:15:57
  • Zuletzt bearbeitet 29.01.2026 13:57:07

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL (Magick Scripting Language) `<write>` command when writing to MSL format. Ve...

9.8

CVE-2026-23876

Exploit
  • EPSS 0.06%
  • Veröffentlicht 20.01.2026 01:15:57
  • Zuletzt bearbeitet 29.01.2026 13:54:14

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controll...

7.5

CVE-2025-69204

Exploit
  • EPSS 0.09%
  • Veröffentlicht 30.12.2025 16:56:32
  • Zuletzt bearbeitet 06.01.2026 18:07:41

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, in the WriteSVGImage function, using an int variable to store number_attributes caused an integer overflow. This, in turn, trigg...

6.2

CVE-2025-68950

  • EPSS 0.03%
  • Veröffentlicht 30.12.2025 16:50:25
  • Zuletzt bearbeitet 06.01.2026 18:13:53

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and an...

7.5

CVE-2025-68618

Exploit
  • EPSS 0.09%
  • Veröffentlicht 30.12.2025 16:14:24
  • Zuletzt bearbeitet 06.01.2026 18:16:21

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue.

3.3

CVE-2025-68469

Exploit
  • EPSS 0.03%
  • Veröffentlicht 18.12.2025 15:36:28
  • Zuletzt bearbeitet 30.12.2025 19:56:36

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.1-14, ImageMagick crashes when processing a crafted TIFF file. Version 7.1.1-14 fixes the issue.

7.5

CVE-2025-66628

  • EPSS 0.05%
  • Veröffentlicht 10.12.2025 22:16:28
  • Zuletzt bearbeitet 06.01.2026 18:17:40

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM (PSX TIM) image parser contains a critical integer overflow vulnerability in its ReadTIMImage function (coders/tim.c). The code...