CVE-2025-62171 | ImageMagick up to 6.9.13-31/7.1.2-6 coders/bmp.c extent integer overflow (GHSA-9pp9-cfwx-54rm)

October 18, 2025 Yanac

A vulnerability described as problematic has been identified in ImageMagick up to 6.9.13-31/7.1.2-6. Affected by this issue is some unknown functionality of the file coders/bmp.c. The manipulation of the argument extent results in integer overflow.

This vulnerability is identified as CVE-2025-62171. The attack can be executed remotely. There is not any exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More