CVE-2026-56372
Severity CVSS v4.0:
MEDIUM
Type:
CWE-122
Heap-based Buffer Overflow
Publication date:
11/07/2026
Last modified:
11/07/2026
Description
ImageMagick before 7.1.2-19 contains a heap buffer overflow vulnerability in the magnify operation that allows attackers to read out of bounds memory. An unrecognized magnify:method value triggers an out of bounds read, potentially exposing sensitive information or causing denial of service.
Impact
Base Score 4.0
4.80
Severity 4.0
MEDIUM
Base Score 3.x
3.30
Severity 3.x
LOW



