Imagemagick

Imagemagick

791 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.18%
  • Veröffentlicht 30.06.2026 22:08:39
  • Zuletzt bearbeitet 02.07.2026 18:27:21

ImageMagick before 7.1.2-24 contains an incorrect policy check that allows attackers to create or truncate files disallowed by security policies. Remote attackers can bypass path policy restrictions in sandboxed conversion services to write arbitrary...

  • EPSS 0.27%
  • Veröffentlicht 30.06.2026 22:08:38
  • Zuletzt bearbeitet 02.07.2026 18:32:09

ImageMagick before 7.1.2-19 contains a memory leak vulnerability in the PNG encoder when writing MNG images. Attackers can trigger the encoder failure condition to exhaust memory resources and cause denial of service.

  • EPSS 0.23%
  • Veröffentlicht 30.06.2026 22:08:38
  • Zuletzt bearbeitet 02.07.2026 18:31:07

ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can exploit nonce reuse in the cipher implementation to recover plaintext information from encrypted...

Exploit
  • EPSS 0.12%
  • Veröffentlicht 30.06.2026 22:08:37
  • Zuletzt bearbeitet 02.07.2026 18:34:24

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark() function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory c...

  • EPSS 0.12%
  • Veröffentlicht 30.06.2026 22:08:36
  • Zuletzt bearbeitet 02.07.2026 18:39:10

ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buffer overflow by providing incorrect morphology parameters causing single pixel memory access vio...

  • EPSS 0.11%
  • Veröffentlicht 30.06.2026 22:08:36
  • Zuletzt bearbeitet 02.07.2026 18:36:14

ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An attacker can supply a large binomial kernel value causing integer overflow, resulting in division...

  • EPSS 0.12%
  • Veröffentlicht 24.06.2026 11:53:21
  • Zuletzt bearbeitet 26.06.2026 21:50:37

ImageMagick before 7.1.2-19 contains an out-of-bounds access vulnerability in ConnectedComponentsImage() when processing connected-components artifacts with invalid indices. Attackers can trigger access violations by specifying malformed connected-co...

  • EPSS 0.26%
  • Veröffentlicht 24.06.2026 11:53:20
  • Zuletzt bearbeitet 26.06.2026 21:51:23

ImageMagick before 7.1.2-15 contains a memory leak vulnerability in multiple coders that write raw pixel data where allocated objects are not properly freed. Attackers can trigger this leak by processing specially crafted images, causing memory exhau...

  • EPSS 0.9%
  • Veröffentlicht 23.06.2026 12:13:05
  • Zuletzt bearbeitet 02.07.2026 15:17:07

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a command injection vulnerability in the SVG decoder that allows attackers to inject arbitrary MVG drawing commands. Attackers can craft malicious SVG files with injected Magick Vector Graphics comma...

  • EPSS 0.26%
  • Veröffentlicht 23.06.2026 12:13:04
  • Zuletzt bearbeitet 02.07.2026 15:17:07

ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory leak in coders/txt.c when processing TXT files with texture attributes: the texture object allocated via ReadImage is not released when GetTypeMetrics fails, leaking memory each time a craft...