CVE-2025-55298Write-what-where Condition in Imagemagick

CWE-123Write-what-where ConditionCWE-134Use of Externally-Controlled Format String8 documents6 sources
Severity
8.8HIGHNVD
EPSS
0.8%
top 26.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ImagemagickDebian Imagemagick
Timeline
PublishedAug 26
Latest updateOct 8

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to ImageMagick versions 6.9.13-28 and 7.1.2-2, a format string bug vulnerability exists in InterpretImageFilename function where user input is directly passed to FormatLocaleString without proper sanitization. An attacker can overwrite arbitrary memory regions, enabling a wide range of attacks from heap overflow to remote code execution. This issue has been patched in versions 6.9.13-28 and 7.1.2

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

debiandebian/imagemagick< imagemagick 8:6.9.11.60+dfsg-1.6+deb12u4 (bookworm)
CVEListV5imagemagick/imagemagick< 7.1.2-2
NVDimagemagick/imagemagick7.0.0-07.1.2-2+1
Debianimagemagick/imagemagick< 8:6.9.11.60+dfsg-1.3+deb11u6+3
Ubuntuimagemagick/imagemagick< 8:6.7.7.10-6ubuntu3.13+esm15+5

Patches

Patch: github.com

🔴Vulnerability Details

4
OSV
imagemagick vulnerabilities2025-10-08
OSV
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution2025-08-26
OSV
CVE-2025-55298: ImageMagick is free and open-source software used for editing and manipulating digital images2025-08-26
GHSA
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution2025-08-26

📋Vendor Advisories

3
Ubuntu
ImageMagick vulnerabilities2025-10-08
Red Hat
ImageMagick: ImageMagick Format String Bug in InterpretImageFilename leads to arbitrary code execution2025-08-26
Debian
CVE-2025-55298: imagemagick - ImageMagick is free and open-source software used for editing and manipulating d...2025