CVE-2026-32636

Published: Mar 18, 2026 Last Modified: Mar 18, 2026

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,3

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: low

Description

AI Translation Available

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-17 and 6.9.13-42, the NewXMLTree method contains a bug that could result in a crash due to an out of write bounds of a single zero byte. Versions 7.1.2-17 and 6.9.13-42 fix the issue.

787

Out-of-bounds Write

Draft

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Availability Other

Potential Impacts:

Modify Memory Execute Unauthorized Code Or Commands Dos: Crash, Exit, Or Restart Unexpected State

Applicable Platforms

Languages: Assembly, C, C++, Memory-Unsafe

Technologies: ICS/OT

Likelihood of Exploit: High

View CWE Details

https://github.com/dlemstra/Magick.NET/releases/tag/14.11.0

https://github.com/ImageMagick/ImageMagick/releases/tag/7.1…

https://github.com/ImageMagick/ImageMagick/releases/tag/7.1.2-17

https://github.com/ImageMagick/ImageMagick/security/advisor…

https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-gc62-2v5p-q…

CVE-2026-32636

Description

Out-of-bounds Write

Common Consequences

Applicable Platforms

Iscriviti alla newsletter