Imagemagick

Imagemagick

725 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2026-24485

  • EPSS 0.05%
  • Veröffentlicht 24.02.2026 00:34:04
  • Zuletzt bearbeitet 27.02.2026 14:34:13

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage() function becomes trapped in an infinite l...

5.3

CVE-2026-24484

  • EPSS 0.05%
  • Veröffentlicht 24.02.2026 00:31:05
  • Zuletzt bearbeitet 27.02.2026 14:37:34

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, Magick fails to check for multi-layer nested mvg conversions to svg, leading to DoS. Versions 7.1.2-15 and 6.9.13...

7.5

CVE-2026-24481

Medienbericht
  • EPSS 0.04%
  • Veröffentlicht 24.02.2026 00:29:20
  • Zuletzt bearbeitet 24.02.2026 17:42:17

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick's PSD (Adobe Photoshop) format handler. When pr...

9.2

CVE-2025-24293

  • EPSS 0.22%
  • Veröffentlicht 30.01.2026 20:11:15
  • Zuletzt bearbeitet 04.02.2026 16:34:21

# Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potentially unsafe image transformation methods and parameters by default. The default allowed list contains three methods allow f...

7.5

CVE-2026-23952

Exploit
  • EPSS 0.02%
  • Veröffentlicht 22.01.2026 00:32:52
  • Zuletzt bearbeitet 27.02.2026 15:35:07

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing <comment> tags befor...

9.8

CVE-2026-22770

  • EPSS 0.07%
  • Veröffentlicht 20.01.2026 01:15:57
  • Zuletzt bearbeitet 29.01.2026 14:56:04

ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last element in the...

5.5

CVE-2026-23874

Exploit
  • EPSS 0.02%
  • Veröffentlicht 20.01.2026 01:15:57
  • Zuletzt bearbeitet 29.01.2026 13:57:07

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL (Magick Scripting Language) `<write>` command when writing to MSL format. Ve...

9.8

CVE-2026-23876

Exploit
  • EPSS 0.08%
  • Veröffentlicht 20.01.2026 01:15:57
  • Zuletzt bearbeitet 29.01.2026 13:54:14

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-13 and 6.9.13-38, a heap buffer overflow vulnerability in the XBM image decoder (ReadXBMImage) allows an attacker to write controll...

7.5

CVE-2025-69204

Exploit
  • EPSS 0.1%
  • Veröffentlicht 30.12.2025 16:56:32
  • Zuletzt bearbeitet 06.01.2026 18:07:41

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, in the WriteSVGImage function, using an int variable to store number_attributes caused an integer overflow. This, in turn, trigg...

6.2

CVE-2025-68950

  • EPSS 0.02%
  • Veröffentlicht 30.12.2025 16:50:25
  • Zuletzt bearbeitet 06.01.2026 18:13:53

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and an...