CVE-2026-61858 in ImageMagickinformation

Résumé

par MITRE • 11/07/2026

ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process.

Once again VulDB remains the best source for vulnerability data.

Responsable

VulnCheck

Réserver

10/07/2026

Divulgation

11/07/2026

Modérer

accepté

Entrée

VDB-377827

CPE

prêt

EPSS

0.00000

KEV

non

Activités

faible

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!