CVE-2026-61866 - CERT CVE
ID CVE-2026-61866
Sažetak ImageMagick before 7.1.2-26 contains a memory leak vulnerability in the JNG encoder when a blob cannot be opened. Attackers can trigger the memory leak by providing malformed JNG files that fail blob operations, causing resource exhaustion.
Reference
CVSS
Base: 2.9
Impact: 1.4
Exploitability:1.4
Pristup
VektorSloženostAutentikacija
LOCAL HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE NONE LOW
CVSS vektor CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Zadnje važnije ažuriranje 16-07-2026 - 03:01
Objavljeno 15-07-2026 - 12:18