Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-61858

ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 3.2%
CVSS Severity
CVSS v3 Score 3.3
Products affected by CVE-2026-61858


Contact Us

Shodan ® - All rights reserved