CVE-2026-40312

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-19

Description An off-by-one error in the MSL decoder can cause a crash when reading a malicious MSL file.

Recommendations Update to version 7.1.2-19.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2026-40312

ECHO-1D9E-4CD3-3B9E

GHSA-5XG3-585R-9JH5

OESA-2026-1916

OESA-2026-1917

OESA-2026-1918

OESA-2026-1919

OESA-2026-1921

OPENSUSE-SU-2026:10586-1

OPENSUSE-SU-2026:20606-1

SUSE-SU-2026:1597-1

SUSE-SU-2026:1598-1

Imagemagick