PT-2026-54826 · Unknown · Imagemagick

Serotav

·

Published

2026-07-01

·

Updated

2026-07-09

·

CVE-2026-53467

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 6.9.13-51 ImageMagick versions prior to 7.1.2-26
Description The MNG decoder contains a heap information disclosure issue where part of the pixels are left unchanged, potentially exposing data from the heap (a region of memory used for dynamic allocation).
Recommendations Update to version 6.9.13-51. Update to version 7.1.2-26.

Exploit

Fix

Use of Uninitialized Resource

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-53467
ECHO-1AB4-0CE9-DAB7
GHSA-8G53-9M3C-69XG
OPENSUSE-SU-2026:11228-1

Affected Products

Imagemagick