CVE-2026-56375

Summary

ImageMagick through 7.1.2-18 contains a memory leak vulnerability in the ASHLAR coder when an action fails. Attackers can trigger failed actions to exhaust memory resources and cause denial of service.

Affected Software

VendorProductVersion RangeStatus
ImageMagickImageMagick0 <= 7.1.2-18affected

Weaknesses

  • CWE-401: Missing Release of Memory after Effective Lifetime

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References