CVE-2026-33535

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-18 ImageMagick versions prior to 6.9.13-43

Description ImageMagick is software used for editing and manipulating digital images. A flaw exists where a zero-byte out-of-bounds write occurs in the X11 display interaction path, potentially causing a crash.

Recommendations Update ImageMagick to version 7.1.2-18 or later. Update ImageMagick to version 6.9.13-43 or later.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2026-33535

ECHO-11A3-7A00-131F

GHSA-MW3M-PQR2-QV7C

OESA-2026-1717

OESA-2026-1718

OESA-2026-1719

OESA-2026-1720

OESA-2026-1721

OESA-2026-1722

OPENSUSE-SU-2026:10465-1

OPENSUSE-SU-2026:10585-1

OPENSUSE-SU-2026:20591-1

OPENSUSE-SU-2026:20606-1

SUSE-SU-2026:1201-1

SUSE-SU-2026:1202-1

SUSE-SU-2026:1203-1

SUSE-SU-2026:1497-1

SUSE-SU-2026:1504-1

SUSE-SU-2026:21380-1

Affected Products

Imagemagick

CVE-2026-33535

Weakness Enumeration

Related Identifiers

Affected Products

References · 112