ImageMagick
CVE-2026-53462
MEDIUM
Severity by source
AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
AV:N reflects network-accessible image intake; AC:H because triggering an allocation failure at the specific CheckPrimitiveExtent site requires crafted input; impact is availability-only with no confidentiality or integrity consequence.
Primary rating from Vendor (GitHub_M).
CVSS VectorVendor: GitHub_M
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionCVE.org
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, when an allocation fails in CheckPrimitiveExtent this can result in a heap-use-after-free and result in a crash. This issue has been patched in versions 6.9.13-50 and 7.1.2-25.
AnalysisAI
Heap-use-after-free in ImageMagick's CheckPrimitiveExtent function allows remote attackers to crash the image processing service by supplying crafted input that triggers a memory allocation failure, resulting in a denial-of-service condition. Affected are all releases of the 6.x branch prior to 6.9.13-50 and all 7.x releases prior to 7.1.2-25. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires that an attacker can supply a crafted image (or image-like input) that reaches the CheckPrimitiveExtent code path and forces a memory allocation failure within that function. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The NVD CVSS 3.1 base score of 5.9 (Medium) is driven by AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker submits a specially crafted image file - sized or structured to exhaust available allocations during CheckPrimitiveExtent processing - to a publicly accessible ImageMagick-backed service such as a web application's thumbnail generator or document converter. The allocation failure triggers the use-after-free, crashing the ImageMagick worker process and causing a denial of service; if the service does not restart workers automatically, this results in sustained outage. … |
| Remediation | The vendor-released patch is available in ImageMagick versions 6.9.13-50 (legacy 6.x branch) and 7.1.2-25 (current 7.x branch). … Detailed patch versions, workarounds, and compensating controls in full report. |
Threat intelligence, references, and detailed analysis are available after sign-in.
More from same product – last 7 days
Denial of service in ImageMagick prior to 6.9.13-50 and 7.1.2-25 allows remote attackers to trigger an out-of-memory con
Out-of-bounds heap write in ImageMagick's ICON decoder allows remote attackers to crash the application by supplying a m
Heap-based buffer over-write in ImageMagick's SF3 encoder prior to version 7.1.2-25 allows an attacker who can supply a
Null pointer dereference in ImageMagick's distort operation crashes the processing process when an attacker supplies mal
Memory leak in ImageMagick's wand option parser degrades availability when invalid options are supplied, affecting all v
Share
External POC / Exploit Code
Leaving vuln.today