CVE-2026-61857 - ImageMagick before 7.1.2-26 Heap Use-After-Free via XMP
CVE ID :CVE-2026-61857
Published : July 11, 2026, 2:16 p.m. | 2 hours, 30 minutes ago
Description :ImageMagick before 7.1.2-26 contains a heap use-after-free vulnerability caused by missing null check when parsing XMP profiles. Attackers can craft malicious image files with specially crafted XMP data to trigger the vulnerability and cause application crashes.
Severity: 3.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : July 11, 2026, 2:16 p.m. | 2 hours, 30 minutes ago
Description :ImageMagick before 7.1.2-26 contains a heap use-after-free vulnerability caused by missing null check when parsing XMP profiles. Attackers can craft malicious image files with specially crafted XMP data to trigger the vulnerability and cause application crashes.
Severity: 3.7 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...