Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
Typenuget
Namespace
NameMagick.NET-Q8-OpenMP-x64
Version14.10.2
Qualifiers
Subpath
Is_vulnerablefalse
Next_non_vulnerable_version14.10.3
Latest_non_vulnerable_version14.13.1
Affected_by_vulnerabilities
Fixing_vulnerabilities
0
url VCID-53qa-r9wk-8uhy
vulnerability_id VCID-53qa-r9wk-8uhy
summary 
ImageMagick MSL: Stack overflow via infinite recursion in ProcessMSLScript
Stack overflow via infinite recursion in MSL (Magick Scripting Language) `<write>` command when writing to MSL format.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23874.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23874.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-23874
reference_id
reference_type
scores
0
value 0.00025
scoring_system epss
scoring_elements 0.07507
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-23874
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
4
reference_url https://github.com/ImageMagick/ImageMagick
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ImageMagick/ImageMagick
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126075
reference_id 1126075
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126075
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431034
reference_id 2431034
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431034
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-23874
reference_id CVE-2026-23874
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-23874
8
reference_url https://github.com/advisories/GHSA-9vj4-wc7r-p844
reference_id GHSA-9vj4-wc7r-p844
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-9vj4-wc7r-p844
9
reference_url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-9vj4-wc7r-p844
reference_id GHSA-9vj4-wc7r-p844
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-20T21:37:11Z/
url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-9vj4-wc7r-p844
fixed_packages
0
url pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
purl pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
aliases CVE-2026-23874, GHSA-9vj4-wc7r-p844
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-53qa-r9wk-8uhy
1
url VCID-7sxq-bg17-v3bx
vulnerability_id VCID-7sxq-bg17-v3bx
summary 
ImageMagick releases an invalid pointer in BilateralBlur when memory allocation fails
The BilateralBlurImage method will allocate a set of double buffers inside AcquireBilateralTLS. But the last element in the set is not properly initialized. This will result in a release of an invalid pointer inside DestroyBilateralTLS when the memory allocation fails.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22770.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-22770.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-22770
reference_id
reference_type
scores
0
value 0.00087
scoring_system epss
scoring_elements 0.25023
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-22770
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
4
reference_url https://github.com/ImageMagick/ImageMagick
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ImageMagick/ImageMagick
5
reference_url https://github.com/ImageMagick/ImageMagick/commit/3e0330721020e0c5bb52e4b77c347527dd71658e
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T20:05:17Z/
url https://github.com/ImageMagick/ImageMagick/commit/3e0330721020e0c5bb52e4b77c347527dd71658e
6
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126074
reference_id 1126074
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126074
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431037
reference_id 2431037
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431037
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-22770
reference_id CVE-2026-22770
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2026-22770
9
reference_url https://github.com/advisories/GHSA-39h3-g67r-7g3c
reference_id GHSA-39h3-g67r-7g3c
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-39h3-g67r-7g3c
10
reference_url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-39h3-g67r-7g3c
reference_id GHSA-39h3-g67r-7g3c
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T20:05:17Z/
url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-39h3-g67r-7g3c
fixed_packages
0
url pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
purl pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
aliases CVE-2026-22770, GHSA-39h3-g67r-7g3c
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7sxq-bg17-v3bx
2
url VCID-a8bq-4d3d-97gd
vulnerability_id VCID-a8bq-4d3d-97gd
summary 
ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image load
NULL pointer dereference in MSL (Magick Scripting Language) parser when processing `<comment>` tag before any image is loaded.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23952.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-23952.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2026-23952
reference_id
reference_type
scores
0
value 0.00024
scoring_system epss
scoring_elements 0.07257
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2026-23952
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
2
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T21:43:24Z/
url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
4
reference_url https://github.com/ImageMagick/ImageMagick
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ImageMagick/ImageMagick
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126077
reference_id 1126077
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126077
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2431905
reference_id 2431905
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2431905
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2026-23952
reference_id CVE-2026-23952
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2026-23952
8
reference_url https://github.com/advisories/GHSA-5vx3-wx4q-6cj8
reference_id GHSA-5vx3-wx4q-6cj8
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-5vx3-wx4q-6cj8
9
reference_url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5vx3-wx4q-6cj8
reference_id GHSA-5vx3-wx4q-6cj8
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
3
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-22T21:43:24Z/
url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-5vx3-wx4q-6cj8
10
reference_url https://usn.ubuntu.com/8127-1/
reference_id USN-8127-1
reference_type
scores
url https://usn.ubuntu.com/8127-1/
fixed_packages
0
url pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
purl pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
aliases CVE-2026-23952, GHSA-5vx3-wx4q-6cj8
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a8bq-4d3d-97gd
3
url VCID-kwru-mwnh-9yac
vulnerability_id VCID-kwru-mwnh-9yac
summary 
ImageMagick has a Memory Leak in LoadOpenCLDeviceBenchmark() when parsing malformed XML
A memory leak vulnerability exists in the `LoadOpenCLDeviceBenchmark()` function in `MagickCore/opencl.c`. When parsing a malformed OpenCL device profile XML file that contains `<device` elements without proper `/>` closing tags, the function fails to release allocated memory for string members (`platform_name`, `vendor_name`, `name`, `version`), leading to memory leaks that could result in resource exhaustion.

**Affected Version**: ImageMagick 7.1.2-12 and possibly earlier versions

---
references
0
reference_url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/dlemstra/Magick.NET/releases/tag/14.10.2
1
reference_url https://github.com/ImageMagick/ImageMagick
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ImageMagick/ImageMagick
2
reference_url https://github.com/advisories/GHSA-qp59-x883-77qv
reference_id GHSA-qp59-x883-77qv
reference_type
scores
0
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-qp59-x883-77qv
3
reference_url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qp59-x883-77qv
reference_id GHSA-qp59-x883-77qv
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
1
value MODERATE
scoring_system cvssv3.1_qr
scoring_elements
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-qp59-x883-77qv
fixed_packages
0
url pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
purl pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2
aliases GHSA-qp59-x883-77qv
risk_score null
exploitability null
weighted_severity null
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kwru-mwnh-9yac
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:nuget/Magick.NET-Q8-OpenMP-x64@14.10.2