Primary

Context

ImageMagick Heap Buffer Overflow Vulnerability in Despeckle Operation on 32-Bit Builds

Vulnerability

Patched

A heap buffer overflow vulnerability has been identified in ImageMagick versions prior to 7.1.2-19 and 6.9.13-44. The issue arises from an integer overflow in the despeckle operation, leading to an out-of-bounds write on 32-bit builds. This vulnerability has been addressed in the latest releases of ImageMagick.

Impact

Exploitation of this vulnerability causes a heap buffer overflow, resulting in an out-of-bounds write, which can potentially be exploited to execute arbitrary code or cause a crash.

Remediation

Users can upgrade to ImageMagick versions 7.1.2-19 or 6.9.13-44 to address this vulnerability.

Added: Apr 13, 2026, 10:57 PM

Updated: Apr 13, 2026, 10:57 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

5.0

remediation

7.7

relevance

5.8

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

5.0

remediation

7.7

relevance

5.8

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ImageMagick Heap Buffer Overflow Vulnerability in Despeckle Operation on 32-Bit Builds

Vulnerability

Impact

Remediation

Affected Products

ImageMagick

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating