CVE 5.5 MEDIUM

ImageMagick: Use-After-Free in crafted 8BIM when identifying an image_CVE-2026-55510

5.5 / 10
MEDIUM
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, when identifying an image with a crafted 8BIM profile with a specific format string a use-after-free will occur. This issue has been fixed in versions 6.9.13-51 and 7.1.2-26.

Basic Information

ID CVE-2026-55510
Source GitHub_M
Published Jul 1, 2026 at 18:53
Modified Jul 1, 2026 at 19:21

Affected Product

Vendor ImageMagick
Product ImageMagick
Version >= 7.0.1-0, < 7.1.2-26
Affected Versions ImageMagick ImageMagick >= 7.0.1-0, < 7.1.2-26
ImageMagick ImageMagick < 6.9.13-51

CWE Classification

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.