CVE-2026-40312 | ImageMagick up to 7.1.2-18 MSL Decoder off-by-one (GHSA-5xg3-585r-9jh5)

April 14, 2026 Yanac

A vulnerability, which was classified as problematic, was found in ImageMagick up to 7.1.2-18. The impacted element is an unknown function of the component MSL Decoder. Such manipulation leads to off-by-one.

This vulnerability is traded as CVE-2026-40312. The attack may be launched remotely. There is no exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More