Primary

Context

ImageMagick Heap-Based Buffer Overflow Vulnerability in UHDR Encoder Allowing Out-of-Bounds Write

Vulnerability

Patched

A heap-based buffer overflow vulnerability has been identified in ImageMagick versions prior to 7.1.2-16. This issue arises in the UHDR encoder, where truncation of a value can lead to an out-of-bounds write, potentially allowing for arbitrary memory manipulation.

Impact

Exploitation of this vulnerability causes a heap-based buffer overflow, which can lead to memory corruption and possibly allow for arbitrary code execution.

Remediation

Users can upgrade to ImageMagick version 7.1.2-16 or later to address this vulnerability.

Added: Mar 10, 2026, 7:56 AM

Updated: Mar 10, 2026, 7:56 AM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

3.1

exploitability

3.3

remediation

7.7

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

3.1

exploitability

3.3

remediation

7.7

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ImageMagick Heap-Based Buffer Overflow Vulnerability in UHDR Encoder Allowing Out-of-Bounds Write

Vulnerability

Impact

Remediation

Affected Products

ImageMagick

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating