CVE-2026-33852

Published: Mar 24, 2026Modified: Mar 26, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: cve_disclosure@tech.gov.sg (Secondary)

Description

Missing Release of Memory after Effective Lifetime vulnerability in MolotovCherry Android-ImageMagick7.This issue affects Android-ImageMagick7: before 7.1.2-11.

Affected (1)

Products: Molotovcherry: Android Imagemagick7

Molotovcherry

1 product

Android Imagemagick7

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Molotovcherry Android Imagemagick7	Before 7.1.2-11

Related CWEs

CWE-401

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (1)

https://github.com/MolotovCherry/Android-ImageMagick7/pull/191

Source: cve_disclosure@tech.gov.sg

Issue Tracking

Timeline

No history available yet.