Zurück zur CVE-Übersicht
CVE-2026-45664
MEDIUM(5.3)CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Risk Signal Score13/100 — NIEDRIG
- CVSS 5.3 — Mittel
EPSS-Score
0%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
5.3
Technische Schwere
Beschreibung
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, because of a missing check in the MNG coder it would be possible to read more images than the list limit policy would allow resulting in excessive resource use. This issue has been patched in versions 6.9.13-47 and 7.1.2-22.
GitHub Advisories
GHSA-g5mf-wqq5-vwg6MEDIUM
ImageMagick: Policy Bypass in MNG coder could
nuget/Magick.NET-Q16-AnyCPU→ 14.13.1
GitHub AdvisoryReferenzen
- https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-g5mf-wqq5-vw...
- https://access.redhat.com/errata/RHSA-2026:32961
- https://access.redhat.com/security/cve/CVE-2026-45664
- https://bugzilla.redhat.com/show_bug.cgi?id=2487732
- https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-45664.json