Magick.NET-Q16-HDRI-OpenMP-arm64
NuGet75 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting Magick.NET-Q16-HDRI-OpenMP-arm64page 2 of 2
- CVE-2026-46559MEDIUMCVSS 4.0EG 4.0✓ Fixed in 14.13.12026-05-18
vulnerable: 10.0.0 ... 9.1.2 (60 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifyin…
- CVE-2026-46692MEDIUMCVSS 4.1EG 4.1✓ Fixed in 14.12.02026-05-22
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-write i…
- CVE-2026-46693MEDIUMCVSS 4.1EG 4.1✓ Fixed in 14.12.02026-05-22
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can hijack a file descriptor in the …
- CVE-2026-47165MEDIUMCVSS 4.1EG 4.1✓ Fixed in 14.12.02026-05-22
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, the distributed pixel cache was originally designed to operate without a challenge–response authenti…
- CVE-2026-47166MEDIUMCVSS 5.7EG 5.7✓ Fixed in 14.12.02026-05-22
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-read in…
- CVE-2026-48724MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-24, when using an image with mask the Floyd-Steinberg dithering method it will cause a negative heap buffer over-write. T…
- CVE-2026-48733MEDIUMCVSS 4.7EG 4.7✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, an infinite loop in the subimage-search operation can happen when using a crafted image. This issue ha…
- CVE-2026-48734MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-49 and 7.1.2-24, a crafted MVG file could result in a stack overflow due to a missing depth or visited-set check. This …
- CVE-2026-48994MEDIUMCVSS 5.9EG 5.9✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-24, a missing check of a return value could lead to a heap buffer over-write in the MAT decoder on 32-bit …
- CVE-2026-53461HIGHCVSS 7.5EG 7.5✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, an incorrect loop in the ICON decoder can result in an out of bounds heap write resulting in a crash. …
- CVE-2026-53462MEDIUMCVSS 5.9EG 5.9✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, when an allocation fails in CheckPrimitiveExtent this can result in a heap-use-after-free and result i…
- CVE-2026-53463MEDIUMCVSS 4.3EG 4.3✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, when passing incorrect arguments in the distort operation a null pointer deference will occur. This is…
- CVE-2026-53465MEDIUMCVSS 6.2EG 6.2✓ Fixed in 14.14.02026-06-10
vulnerable: 10.0.0 ... 9.1.2 (61 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-25, a crafted multi-frame can result in a heap buffer over-write when encoding it with the SF3 encoder. This issue has be…
- CVE-2026-56361HIGHCVSS 7.1EG 3.3✓ Fixed in 14.12.02026-07-01
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation allowing out-of-bounds heap buffer reads. Attackers can trigger heap buffer overflow by providing incorrect morphology parameters causing single pixel memory…
- CVE-2026-56362MEDIUMCVSS 4.2EG 3.3✓ Fixed in 14.10.32026-07-08
vulnerable: 10.0.0 ... 9.1.2 (54 versions)
ImageMagick before 7.1.2-15 contains a heap-buffer-overflow read vulnerability in GetPixelIndex caused by OpenPixelCache updating image channel metadata before pixel cache memory allocation. Attackers can trigger memory and disk allocation…
- CVE-2026-56363LOWCVSS 3.3EG 3.3✓ Fixed in 14.12.02026-07-01
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick before 7.1.2-22 contains a division by zero vulnerability in binomial kernel processing that allows attackers to cause denial of service. An attacker can supply a large binomial kernel value causing integer overflow, resulting …
- CVE-2026-56364LOWCVSS 1.9EG 1.9✓ Fixed in 14.10.22026-07-01
vulnerable: 10.0.0 ... 9.1.2 (53 versions)
ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark() function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache …
- CVE-2026-56365MEDIUMCVSS 5.3EG 3.7✓ Fixed in 14.12.02026-07-01
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick before 7.1.2-19 contains a memory leak vulnerability in the PNG encoder when writing MNG images. Attackers can trigger the encoder failure condition to exhaust memory resources and cause denial of service.
- CVE-2026-56367CRITICALCVSS 9.1EG 3.7✓ Fixed in 14.10.32026-06-21
vulnerable: 10.0.0 ... 9.1.2 (54 versions)
ImageMagick before 7.1.2-15 and 6.9.x before 6.9.13-40 contains an integer overflow in the PSB (PSD v2) RLE decoding path (ReadPSDChannelRLE in coders/psd.c) that causes a heap out-of-bounds read on 32-bit builds. Processing a crafted PSB …
- CVE-2026-56369LOWCVSS 3.7EG 3.7✓ Fixed in 14.12.02026-07-01
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can exploit nonce reuse in the cipher implementation to recover plaintext information fro…
- CVE-2026-56370HIGHCVSS 7.8EG 3.3✓ Fixed in 14.12.02026-04-14
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick before 7.1.2-19 contains an out-of-bounds access vulnerability in ConnectedComponentsImage() when processing connected-components artifacts with invalid indices. Attackers can trigger access violations by specifying malformed c…
- CVE-2026-56371MEDIUMCVSS 5.3EG 5.3✓ Fixed in 14.10.32026-06-23
vulnerable: 10.0.0 ... 9.1.2 (54 versions)
ImageMagick before 7.1.2-15 and 6.9.13-40 contains a memory leak in coders/txt.c when processing TXT files with texture attributes: the texture object allocated via ReadImage is not released when GetTypeMetrics fails, leaking memory each t…
- CVE-2026-56374HIGHCVSS 7.1EG 3.3✓ Fixed in 14.12.02026-07-08
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick before 7.1.2-19 contains a heap buffer overflow vulnerability in the FTXT encoder due to missing boundary checks when parsing ftxt:format. Remote attackers can trigger an out of bounds read by crafting malicious FTXT image file…
- CVE-2026-56376LOWCVSS 3.3EG 3.7✓ Fixed in 14.10.32026-06-23
vulnerable: 10.0.0 ... 9.1.2 (54 versions)
ImageMagick before 7.1.2-15 and 6.9.13-40 contains a heap use-after-free in the meta coder: when memory allocation fails, a single byte is written to a stale pointer. Remote attackers can trigger it by processing specially crafted image fi…
- CVE-2026-56379MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.10.32026-06-23
vulnerable: 10.0.0 ... 9.1.2 (54 versions)
ImageMagick before 7.1.2-15 and 6.9.13-40 contains a command injection vulnerability in the SVG decoder that allows attackers to inject arbitrary MVG drawing commands. Attackers can craft malicious SVG files with injected Magick Vector Gra…
Check whether Magick.NET-Q16-HDRI-OpenMP-arm64 is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for Magick.NET-Q16-HDRI-OpenMP-arm64 CVEs against the assets you own.
Start Free Scan →