NVD Vulnerability Detail
Search Exploit, PoC
CVE-2026-61465
Summary

ImageMagick before 7.1.2-26 and 6.9.13-51 is missing a check for the allowed memory allocation limit in matrix-backed operations such as -canny. An attacker can supply a crafted image that causes ImageMagick to allocate more memory than permitted by the configured policy, resulting in a denial of service.

Publication Date July 11, 2026, 11:16 p.m.
Registration Date July 12, 2026, 4:13 a.m.
Last Update July 14, 2026, 3:09 a.m.
CVSS3.1 : LOW
スコア 3.3
Vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
攻撃元区分(AV) ローカル
攻撃条件の複雑さ(AC)
攻撃に必要な特権レベル(PR) 不要
利用者の関与(UI)
影響の想定範囲(S) 変更なし
機密性への影響(C) なし
完全性への影響(I) なし
可用性への影響(A)
Related information, measures and tools
Common Vulnerabilities List