MEDIUM 6.3 NuGet
ImageMagick has a Path Policy TOCTOU symlink race bypass
GHSA-493f-jh8w-qhx3 · CVE-2026-28689
Published · Modified
Description
domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write.
Ready to move
Start Securing
Free, no credit card | First findings in minutes