Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
ImageMagick: Malicious Image Files Can Execute Arbitrary Code
UBUNTU-CVE-2026-28690
Summary
A vulnerability in ImageMagick could allow an attacker to execute malicious code by uploading a specially crafted image file. This could lead to unauthorized access to sensitive data or system compromise. Update ImageMagick to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| canonical | imagemagick | All versions | – |
| canonical | imagemagick | All versions | – |
| canonical | imagemagick | All versions | – |
| canonical | imagemagick | All versions | – |
| canonical | imagemagick | All versions | – |
| canonical | imagemagick | All versions | – |
| canonical | imagemagick | All versions | – |
Original title
(ImageMagick is free and open-source software used for editing and mani ...)
Original description
(ImageMagick is free and open-source software used for editing and mani ...)
- https://ubuntu.com/security/CVE-2026-28690 Third Party Advisory
- https://www.cve.org/CVERecord?id=CVE-2026-28690 Third Party Advisory
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 13 Mar 2026