PT-2026-22046 · Unknown · Imagemagick

Ylwango613

Published

2026-02-25

Updated

2026-03-12

CVE-2026-27798

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40

Description ImageMagick is software used for editing and manipulating digital images. A heap buffer over-read issue arises when processing an image with small dimensions using the -wavelet-denoise operator. The issue manifests as an error during memory access, specifically a read of size 4 at a particular memory address.

Recommendations Update ImageMagick to version 7.1.2-15 or later. Update ImageMagick to version 6.9.13-40 or later.

Exploit

Fix

Out of bounds Read

Buffer Over-read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-126

Related Identifiers

BDU:2026-02558

CVE-2026-27798

ECHO-7A2A-53C3-6476

GHSA-QPGX-JFCQ-R59F

OESA-2026-1502

OPENSUSE-SU-2026:10278-1

OPENSUSE-SU-2026:20337-1

SUSE-SU-2026:0851-1

SUSE-SU-2026:0852-1

SUSE-SU-2026:0853-1

Affected Products

Imagemagick

PT-2026-22046 · Unknown · Imagemagick

CVE-2026-27798

Weakness Enumeration

Related Identifiers

Affected Products

References · 106