Unrated severityNVD Advisory· Published Jul 1, 2026
Debian imagemagick: ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in …
CVE-2026-56369
Description
ImageMagick before 7.1.2-22 contains an information disclosure vulnerability in the PasskeyEncipherImage method due to AES-CTR nonce reuse. Attackers can exploit nonce reuse in the cipher implementation to recover plaintext information from encrypted images.
Affected products
3<7.1.2.22+ 1 more
- (no CPE)range: <7.1.2.22
- (no CPE)range: <7.1.2-22
- Range: <7.1.2-22
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.