CVE-2026-25967 - CERT CVE

  1. CVE-2026-25967

ID CVE-2026-25967
Sažetak ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a stack-based buffer overflow exists in the ImageMagick FTXT image reader. A crafted FTXT file can cause out-of-bounds writes on the stack, leading to a crash. Version 7.1.2-15 contains a patch.
Reference
CVSS
Base: 7.4
Impact: 5.2
Exploitability:2.2
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE HIGH HIGH
CVSS vektor CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H
Zadnje važnije ažuriranje 25-02-2026 - 11:58
Objavljeno 24-02-2026 - 02:16