Unrated severityNVD Advisory· Published Jul 16, 2026
Debian imagemagick: ImageMagick before 7.1.2-26 and 6.9.13-x before 6.9.13-51 contains a policy bypa…
CVE-2026-61859
Description
ImageMagick before 7.1.2-26 and 6.9.13-x before 6.9.13-51 contains a policy bypass vulnerability in the -script operation due to missing security policy checks. This allows reading files from paths that are otherwise disallowed by the configured security policy.
Affected products
2- Range: <7.1.2-26, <6.9.13-51
- Range: <7.1.2-26, <6.9.13-51
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.