Magick.NET-Q16-arm64

NuGet27 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting Magick.NET-Q16-arm64page 1 of 1

CVE-2023-1289MEDIUMCVSS 5.5EG 5.5✓ Fixed in 13.0.0
2023-03-23
vulnerable: 10.0.0 ... 9.1.2 (22 versions)
A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, gene…
CVE-2025-53014LOWCVSS 3.7EG 3.7✓ Fixed in 14.7.0
2025-07-14
vulnerable: 10.0.0 ... 9.1.2 (45 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 and 6.9.13-26 have a heap buffer overflow in the `InterpretImageFilename` function. The issue stems from an off-by-one…
CVE-2025-53015HIGHCVSS 7.5EG 7.5✓ Fixed in 14.7.0
2025-07-14
vulnerable: 10.0.0 ... 9.1.2 (45 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion command. Version 7.1.2-0 fixes the issue.
CVE-2025-53019LOWCVSS 3.7EG 3.7✓ Fixed in 14.7.0
2025-07-14
vulnerable: 10.0.0 ... 9.1.2 (45 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick stream` command, specifying multiple consecutive `%d` format specifiers in …
CVE-2025-53101HIGHCVSS 7.4EG 7.4✓ Fixed in 14.7.0
2025-07-14
vulnerable: 10.0.0 ... 9.1.2 (45 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick mogrify` command, specifying multiple consecutive `%d` format specifiers in…
CVE-2025-55154HIGHCVSS 8.8EG 8.8✓ Fixed in 14.8.0
2025-08-13
vulnerable: 10.0.0 ... 9.1.2 (46 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage (in coders/png.c) are unsafe and can overflow, leadi…
CVE-2025-55160MEDIUMCVSS 6.1EG 6.1✓ Fixed in 14.8.0
2025-08-13
vulnerable: 10.0.0 ... 9.1.2 (46 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, there is undefined behavior (function-type-mismatch) in splay tree cloning callback. This results in a …
CVE-2025-55212LOWCVSS 3.7EG 3.7✓ Fixed in 14.8.1
2025-08-26
vulnerable: 10.0.0 ... 9.1.2 (47 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to montage -geometry leads GetGeometry() to set…
CVE-2025-55298HIGHCVSS 7.5EG 7.5✓ Fixed in 14.8.1
2025-08-26
vulnerable: 10.0.0 ... 9.1.2 (47 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user inpu…
CVE-2025-57807LOWCVSS 3.8EG 3.8✓ Fixed in 14.8.2
2025-09-05
vulnerable: 10.0.0 ... 9.1.2 (48 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob(), which permits advancing the stream offset beyond the current end…
CVE-2025-68618MEDIUMCVSS 5.3EG 5.3✓ Fixed in 14.10.1
2025-12-30
vulnerable: 10.0.0 ... 9.1.2 (52 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, using Magick to read a malicious SVG file resulted in a DoS attack. Version 7.1.2-12 fixes the issue.
CVE-2025-68950MEDIUMCVSS 4.0EG 4.0✓ Fixed in 14.10.1
2025-12-30
vulnerable: 10.0.0 ... 9.1.2 (52 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerabil…
CVE-2026-22770MEDIUMCVSS 6.5EG 6.5✓ Fixed in 14.10.2
2026-01-20
vulnerable: 10.0.0 ... 9.1.2 (53 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But, in versions prior to 7.1.2-13, the last ele…
CVE-2026-23874MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.10.2
2026-01-20
vulnerable: 10.0.0 ... 9.1.2 (53 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-13 have a stack overflow via infinite recursion in MSL (Magick Scripting Language) `<write>` command when writing to MSL…
CVE-2026-23952MEDIUMCVSS 6.5EG 6.5✓ Fixed in 14.10.2
2026-01-22
vulnerable: 10.0.0 ... 9.1.2 (53 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing <comment>…
CVE-2026-33535MEDIUMCVSS 4.0EG 4.0✓ Fixed in 14.11.1
2026-03-26
vulnerable: 10.0.0 ... 9.1.2 (57 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. …
CVE-2026-33536MEDIUMCVSS 5.1EG 5.1✓ Fixed in 14.11.1
2026-03-26
vulnerable: 10.0.0 ... 9.1.2 (57 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incremented past the end of a buffer that is…
CVE-2026-33899MEDIUMCVSS 5.3EG 5.3✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-189 and 6.9.13-44, when `Magick` parses an XML file it is possible that a single zero byte is written out of the bounds.…
CVE-2026-33901HIGHCVSS 7.5EG 7.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a heap buffer overflow occurs in the MVG decoder that could result in an out of bounds write when…
CVE-2026-33902MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, a stack overflow vulnerability in ImageMagick's FX expression parser allows an attacker to crash …
CVE-2026-33905MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, the -sample operation has an out of bounds read when an specific offset is set through the `sampl…
CVE-2026-33908HIGHCVSS 7.5EG 7.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below both 7.1.2-19 and 6.9.13-44, Magick frees the memory of the XML tree via the `DestroyXMLTree()` function; however, this proces…
CVE-2026-40169MEDIUMCVSS 6.2EG 6.2✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, a crafted image could result in an out of bounds heap write when writing a yaml or json output, resulting in a crash…
CVE-2026-40183MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, the JXL encoder has an heap write overflow when a user specifies that the image should be encoded as 16 bit floats. …
CVE-2026-40310MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below both 7.1.2-19 and 6.9.13-44, contain a heap out-of-bounds write in the JP2 encoder with when a user specifies an invalid sampling…
CVE-2026-40311MEDIUMCVSS 5.5EG 5.5✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. Versions below 7.1.2-19 and 6.9.13-44 contain a heap use-after-free vulnerability that can cause a crash when reading and printing values from a…
CVE-2026-40312MEDIUMCVSS 6.2EG 6.2✓ Fixed in 14.12.0
2026-04-13
vulnerable: 10.0.0 ... 9.1.2 (58 versions)
ImageMagick is free and open-source software used for editing and manipulating digital images. In versions below 7.1.2-19, an off by one error in the MSL decoder could result in a crash when a malicous MSL file is read. This issue has been…

Check whether Magick.NET-Q16-arm64 is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for Magick.NET-Q16-arm64 CVEs against the assets you own.

Start Free Scan →