// For flags

CVE-2025-55212

ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash

Severity Score

3.7
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track*
*SSVC
Descriptions

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to montage -geometry leads GetGeometry() to set width/height to 0. Later, ThumbnailImage() divides by these zero dimensions, triggering a crash (SIGFPE/abort), resulting in a denial of service. This issue has been patched in versions 6.9.13-28 and 7.1.2-2.

ImageMagick es un software gratuito y de código abierto que se utiliza para editar y manipular imágenes digitales. Antes de las versiones 6.9.13-28 y 7.1.2-2, al pasar una cadena de geometría que solo contenía dos puntos (":") a montage -geometry, GetGeometry() establecía el ancho/alto en 0. Posteriormente, ThumbnailImage() dividía por estas dimensiones cero, lo que provocaba un fallo (SIGFPE/abort) y una denegación de servicio. Este problema se ha corregido en las versiones 6.9.13-28 y 7.1.2-2.

This update for ImageMagick fixes the following issues. Fixed heap buffer over-read in in ReadOneMNGIMage when processing images with separate alpha channels. Fixed heap buffer overflow when transforming from Log to sRGB colorspaces. Fixed integer overflow when performing magnified size calculations in ReadOneMNGIMage. Fixed undefined behavior due to function-type-mismatch in CloneSplayTree. Fixed division-by-zero in ThumbnailImage when passing a geometry string containing only a colon to 'montage -geometry'. Fixed heap overflow due to format string bug vulnerability. Fixed heap out-of-bounds write due to 32-bit integer overflow. Fixed output file placeholders.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
Low
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
High
Authentication
None
Confidentiality
None
Integrity
None
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:Track*
Exploitation
Poc
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2025-08-08 CVE Reserved
  • 2025-08-26 CVE Published
  • 2025-09-02 CVE Updated
  • 2025-09-02 First Exploit
  • 2025-10-20 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-369: Divide By Zero
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Imagemagick
Search vendor "Imagemagick"
 Imagemagick
Search vendor "Imagemagick" for product "Imagemagick"
 < 6.9.13-28
Search vendor "Imagemagick" for product "Imagemagick" and version " < 6.9.13-28"
-
Affected
Imagemagick
Search vendor "Imagemagick"
 Imagemagick
Search vendor "Imagemagick" for product "Imagemagick"
 >= 7.0.0-0 < 7.1.2-2
Search vendor "Imagemagick" for product "Imagemagick" and version " >= 7.0.0-0 < 7.1.2-2"
-
Affected