{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33535", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-20T18:05:11.831Z", "datePublished": "2026-03-26T19:52:30.452Z", "dateUpdated": "2026-03-27T20:02:06.512Z"}, "containers": {"cna": {"title": "ImageMagick has an Out-of-Bounds write of a zero byte in its X11 display interaction", "problemTypes": [{"descriptions": [{"cweId": "CWE-787", "lang": "en", "description": "CWE-787: Out-of-bounds Write", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 4, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mw3m-pqr2-qv7c", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mw3m-pqr2-qv7c"}], "affected": [{"vendor": "ImageMagick", "product": "ImageMagick", "versions": [{"version": "< 7.1.2-18", "status": "affected"}, {"version": "< 6.9.13-43", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-26T19:52:30.452Z"}, "descriptions": [{"lang": "en", "value": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the issue."}], "source": {"advisory": "GHSA-mw3m-pqr2-qv7c", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T19:52:50.728443Z", "id": "CVE-2026-33535", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T20:02:06.512Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33535", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-27T19:52:50.728443Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T19:52:57.975Z"}}], "cna": {"title": "ImageMagick has an Out-of-Bounds write of a zero byte in its X11 display interaction", "source": {"advisory": "GHSA-mw3m-pqr2-qv7c", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "ImageMagick", "product": "ImageMagick", "versions": [{"status": "affected", "version": "< 7.1.2-18"}, {"status": "affected", "version": "< 6.9.13-43"}]}], "references": [{"url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mw3m-pqr2-qv7c", "name": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mw3m-pqr2-qv7c", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-787", "description": "CWE-787: Out-of-bounds Write"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-26T19:52:30.452Z"}}}, "cveMetadata": {"cveId": "CVE-2026-33535", "state": "PUBLISHED", "dateUpdated": "2026-03-27T20:02:06.512Z", "dateReserved": "2026-03-20T18:05:11.831Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-26T19:52:30.452Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*", "matchCriteriaId": "AE210D23-0EC1-400A-A545-0CABCB44EF78", "versionEndExcluding": "6.9.13-43", "vulnerable": true}, {"criteria": "cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*", "matchCriteriaId": "A761D9D6-07EA-4D5D-94AA-7ED80672FE0E", "versionEndExcluding": "7.1.2-18", "versionStartIncluding": "7.0.0-0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the issue."}, {"lang": "es", "value": "ImageMagick es un software libre y de c\u00f3digo abierto utilizado para editar y manipular im\u00e1genes digitales. Antes de 7.1.2-18 y 6.9.13-43, exist\u00eda una escritura fuera de l\u00edmites de un byte cero en la ruta de interacci\u00f3n 'display' de X11 que podr\u00eda provocar un fallo. Las versiones 7.1.2-18 y 6.9.13-43 parchean el problema."}], "id": "CVE-2026-33535", "lastModified": "2026-04-02T17:51:22.880", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 4.0, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-26T20:16:15.723", "references": [{"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mw3m-pqr2-qv7c"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{"bugzilla": {"description": "ImageMagick: ImageMagick: Denial of Service via out-of-bounds write in X11 display interaction path", "id": "2451855", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2451855"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.0", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "draft"}, "cwe": "CWE-787", "details": ["A flaw was found in ImageMagick, a free and open-source software used for editing and manipulating digital images. A local attacker could exploit an out-of-bounds write of a zero byte in the X11 display interaction path. This vulnerability, a type of memory corruption, could lead to a crash of the application, resulting in a Denial of Service (DoS)."], "mitigation": {"lang": "en:us", "value": "For systems where ImageMagick is not required, especially in server environments without a graphical interface, consider removing the `ImageMagick` package to eliminate the attack surface. This action may impact applications that rely on ImageMagick for image processing."}, "name": "CVE-2026-33535", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "ImageMagick", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Fix deferred", "package_name": "ImageMagick", "product_name": "Red Hat Enterprise Linux 7"}], "public_date": "2026-03-26T19:52:30Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-33535\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-33535\nhttps://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-mw3m-pqr2-qv7c"], "statement": "Low impact. This flaw in ImageMagick's X11 display interaction path requires local access to trigger an out-of-bounds write, leading to a denial of service. Red Hat Enterprise Linux systems are affected if ImageMagick is installed and used in an X11 environment.", "threat_severity": "Low"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,7.1.2-18)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,6.9.13-43)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "ImageMagick", "source": "cna", "vendor": "ImageMagick"}, "product": "imagemagick", "vendor": "imagemagick"}], "analysis": {"en": {"generated_at": "2026-04-02T22:14:29.105331+00:00", "value": {"mitigation_remediation": ["Upgrade ImageMagick to version 7.1.2-18 or later, or 6.9.13-43 or newer to apply the vendor patch.", "If an upgrade is temporarily impossible, configure ImageMagick to avoid using the X11 display interface or disable services that employ it.", "Monitor system logs for crashes or abnormal terminations that may indicate exploitation attempts.", "Verify that the patched binaries are deployed by checking the version string in affected applications.", "Ensure that any third\u2011party pipelines or automation that invoke ImageMagick are updated to use the secure, patched versions."], "summary": {"action": "Apply Patch", "impact": "Out-of-Bounds Write Leading to Crash"}, "threat_synthesis": {"affected_systems": "ImageMagick versions older than 7.1.2-18 and 6.9.13-43 are affected. The software is distributed as open\u2011source image editing and manipulation tools; updates newer than the listed versions provide the fix.", "description_and_impact": "A zero byte is written beyond the bounds of a memory buffer in the X11 display interaction of ImageMagick, resulting in a program crash. The flaw is identified as an out-of-bounds write (CWE-787) and does not directly provide remote code execution or data disclosure. When triggered, the target application may terminate unexpectedly and a denial\u2011of\u2011service condition can be induced on the affected system.", "risk_and_exploitability": "The CVSS score of 4 indicates moderate severity, and the EPSS score of less than 1% suggests low likelihood of widespread exploitation. The vulnerability is not listed in the CISA Known Exploited Vulnerabilities catalog. Exploitation requires a process that interacts with the X11 display interface, so the attack vector is likely local or requires an attacker to deliver a malicious image via a service that hands it to ImageMagick while an X11 session is available. The outcome is limited to causing the application to crash or become unavailable rather than enabling further system compromise."}}}}, "created": "2026-03-27T08:32:21.893021+00:00", "updated": "2026-04-03T09:38:50.133810+00:00", "vendors": ["imagemagick", "imagemagick$PRODUCT$imagemagick"]}