CVE-2025-46393

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.1-44

Description The issue is related to the mishandling of packet size in multispectral MIFF image processing, which is connected to the rendering of all channels in an arbitrary order.

Recommendations For versions prior to 7.1.1-44, update to version 7.1.1-44 or later to resolve the issue.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-131

Related Identifiers

BDU:2025-10909

CVE-2025-46393

MGASA-2025-0141

OESA-2025-1498

OESA-2025-1500

OESA-2025-1501

OESA-2025-1502

OPENSUSE-SU-2025_1464-1

OPENSUSE-SU-2025_1488-1

SUSE-SU-2025:01464-1

SUSE-SU-2025:02188-1

SUSE-SU-2025:1464-1

SUSE-SU-2025:1488-1

SUSE-SU-2025_02188-1

Affected Products

Astra Linux

Debian

Imagemagick

Red Os

Suse

CVE-2025-46393

Weakness Enumeration

Related Identifiers

Affected Products

References · 47