CVE-2026-47166EPSS p2.6%

CVE-2026-47166CVE-2026-47166

imagemagick / imagemagick

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an attacker who can connect to a magick -distribute-cache service can cause a heap buffer over-read in the server process. This issue has been patched in versions 6.9.13-48 and 7.1.2-23.

Scoring

CVSS 5.7 ()
VectorCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:H
EPSS0.13% probability of exploitation · percentile 2.6% · 2026-06-19T12:03:05Z
Last modified2026-06-11

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-46692
CVE
CVE-2026-46520
CVE
CVE-2026-46693
CVE
CVE-2026-25987
CVE
CVE-2026-23876
CVE
CVE-2026-53460
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.