CVE-2026-61858 - ImageMagick before 7.1.2-26 Policy Bypass via APNG encoder
CVE ID :CVE-2026-61858
Published : July 11, 2026, 2:16 p.m. | 4 hours, 30 minutes ago
Description :ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Published : July 11, 2026, 2:16 p.m. | 4 hours, 30 minutes ago
Description :ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process.
Severity: 3.3 | LOW
Visit the link for more details, such as CVSS details, affected products, timeline, and more...