Denial of Service Vulnerability in ImageMagick Software
CVE-2025-68618

5.3MEDIUM

Key Information:

Vendor

Imagemagick
Status
Imagemagick
Vendor
CVE Published:
30 December 2025

What is CVE-2025-68618?

ImageMagick, a popular open-source software for image manipulation, is susceptible to a denial of service vulnerability when processing malicious SVG files. Attackers can exploit this flaw to render the service inoperable, leading to potential service interruptions for users. This issue is addressed in version 7.1.2-12, which is recommended for all users to ensure security against such attacks.

Affected Version(s)

ImageMagick < 7.1.2-12

References

https://github.com/ImageMagick/ImageMagick/security/advis...
x_refsource_CONFIRM
https://github.com/ImageMagick/ImageMagick/commit/6f431d4...
x_refsource_MISC

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.