Infinite Loop Vulnerability in ImageMagick Software by ImageMagick
CVE-2026-46522
7.5HIGH
What is CVE-2026-46522?
An infinite loop vulnerability exists in the MIFF decoder of ImageMagick, which could be exploited by processing a specially crafted MIFF file. This flaw may lead to significant CPU resource consumption, potentially impacting system performance. Versions 7.1.2.23 and 6.9.13-48 have addressed this issue to enhance the security of the software.
Affected Version(s)
ImageMagick < 7.1.2-23 < 7.1.2-23
ImageMagick < 6.9.13-48 < 6.9.13-48