PT-2026-42811 · Unknown+1 · Imagemagick+1

Published

2026-05-21

·

Updated

2026-07-03

·

CVE-2026-46692

CVSS v3.1

4.1

Medium

VectorAV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions ImageMagick (affected versions not specified)
Description An attacker capable of connecting to a magick -distribute-cache service can trigger a heap buffer over-write within the server process. A heap buffer over-write occurs when a program writes more data to a buffer located on the heap than it can hold, potentially leading to crashes or arbitrary code execution.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

BDU:2026-09649
CVE-2026-46692
ECHO-A4D2-499C-9C7A
GHSA-P93H-F2JC-477J
OESA-2026-2386
OESA-2026-2387
OESA-2026-2388
OESA-2026-2389
OESA-2026-2463
OPENSUSE-SU-2026:11061-1
OPENSUSE-SU-2026:21071-1
SUSE-SU-2026:22378-1
SUSE-SU-2026:2580-1

Affected Products

Imagemagick
Red Os