Imagemagick
This hub aggregates every CVE we track for Imagemagick, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
779
CVEs tracked
40
Critical
211
High
3
In CISA KEV
Severity distribution
MEDIUM484HIGH211LOW44CRITICAL40
Monthly trend
0
0
0
0
0
0
0
0
2
0
0
4
7
1
2
0
6
4
34
21
12
1
39
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Imagemagick.
- CVE-2026-56377ImageMagick - Policy Bypass via Incorrect Path Validation3.3
- CVE-2026-56365ImageMagick - Memory Leak in PNG Encoder via MNG Image Writing3.7
- CVE-2026-56369ImageMagick - Information Disclosure via AES-CTR Nonce Reuse in PasskeyEncipherImage3.7
- CVE-2026-56364ImageMagick - Memory Leak in LoadOpenCLDeviceBenchmark() via Malformed XML1.9
- CVE-2026-56361ImageMagick - Heap Buffer Overflow via Off-by-One in Morphology Processing3.3
- CVE-2026-56363ImageMagick - Division by Zero in Binomial Kernel Processing3.3
- CVE-2026-56370ImageMagick - Out-of-bounds Access in ConnectedComponentsImage via connected-components Artifact3.3
- CVE-2026-56368ImageMagick - Memory Leak in Raw Pixel Data Coders3.7
- CVE-2026-56376ImageMagick - Heap Use-After-Free in Meta Coder3.7
- CVE-2026-56378ImageMagick - Heap Out-of-Bounds Read in PCD Decoder3.7
- CVE-2026-56367ImageMagick - Heap Out-of-Bounds Read in PSB RLE Decoding3.7
- CVE-2026-53465ImageMagick: Heap Buffer Over-Write in SF3 encoder when writing multi-frame image6.2
- CVE-2026-53464ImageMagick: Memory Leak in wand option parser when providing invalid arguments4.0
- CVE-2026-53463ImageMagick: Null Pointer Dereference in distort operation when passing incorrect arguments4.3
- CVE-2026-53462ImageMagick: Use-After-Free when allocation in CheckPrimitiveExtent fails5.9
Product normalization is registry-driven with AI assist and human review. How it works