Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows reading the mvg file will be affected. Version 7.1.2-12 fixes the issue.

INFO

Published Date :

2025-12-30T16:50:25.773Z

Last Modified :

2025-12-30T18:11:38.304Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-68950 vulnerability.

Vendors Products
Imagemagick
  • Imagemagick
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-68950.

URL Resource
https://github.com/ImageMagick/ImageMagick/commit/204718c2211903949dcfc0df8e65ed066b008dec cve-icon cve-icon cve-icon
https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-7rvh-xqp3-pr8j cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-68950 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-68950 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact