CVE-2026-61464
Received Received - Intake

Heap-based Buffer Overwrite in ImageMagick

Vulnerability report for CVE-2026-61464, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-15

Last updated on: 2026-07-15

Assigner: VulnCheck

Description

ImageMagick before 7.1.2-26 and 6.9.13-51 contains a heap-based buffer over-write vulnerability that occurs when running an X11 import with a crafted window title, which can result in heap memory corruption and denial of service.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-15
Last Modified
2026-07-15
Generated
2026-07-15
AI Q&A
2026-07-15
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
imagemagick imagemagick to 7.1.2-26 (exc)
imagemagick imagemagick to 6.9.13-51 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-122 A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is a heap-based buffer over-write flaw in ImageMagick's X11 import feature. It occurs when processing a specially crafted window title, causing heap memory corruption. This can lead to crashes or denial of service. The issue affects versions before 7.1.2-26 and 6.9.13-51.

Impact Analysis

The impact is limited due to low severity. It requires local access, high privileges, and user interaction. It may cause denial of service by crashing the application or corrupting memory. No confidentiality or integrity impact is reported.

Compliance Impact

This vulnerability has minimal impact on compliance. It does not affect confidentiality or integrity, which are key concerns for GDPR and HIPAA. The low severity and limited scope reduce regulatory risk.

Detection Guidance

To detect this vulnerability, check the installed version of ImageMagick using the command: convert --version or identify --version. If the version is below 7.1.2-26 or 6.9.13-51, the system is vulnerable. Monitor for crashes during X11 import operations with crafted window titles.

Mitigation Strategies

Immediately update ImageMagick to version 7.1.2-26 or later for ImageMagick 7, or 6.9.13-51 or later for ImageMagick 6. If updating is not possible, disable X11 import functionality or restrict access to trusted users only.

Executive Summary

This is a heap-based buffer over-write vulnerability in ImageMagick's X11 import feature. It occurs when processing a specially crafted window title, leading to heap memory corruption. The flaw affects versions before 7.1.2-26 and 6.9.13-51.

Impact Analysis

The vulnerability may cause heap memory corruption and denial of service. Exploitation requires local access, high attack complexity, high privileges, and user interaction. It has limited impact on system availability but does not affect confidentiality or integrity.

Compliance Impact

This vulnerability has minimal impact on compliance with standards like GDPR or HIPAA. It does not lead to data breaches or integrity loss, and its low severity score indicates limited risk to regulated environments.

Detection Guidance

Detecting this vulnerability requires checking the installed version of ImageMagick. Run 'convert --version' or 'magick --version' to see the version. If it is below 7.1.2-26 or 6.9.13-51, the system is vulnerable. Additionally, monitor for crashes during X11 import operations with crafted window titles.

Mitigation Strategies

Immediately update ImageMagick to version 7.1.2-26 or later for ImageMagick 7, or 6.9.13-51 or later for ImageMagick 6. If updating is not possible, disable X11 import functionality or restrict access to trusted users only.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-61464. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart