Android-ImageMagick7 Memory Leak Vulnerability (CVE-2026-33852)
A missing release of memory vulnerability (CVE-2026-33852) in MolotovCherry Android-ImageMagick7 before version 7.1.2-11 can lead to a denial-of-service condition due to memory exhaustion.
CVE-2026-33852 is a “Missing Release of Memory after Effective Lifetime” vulnerability affecting MolotovCherry Android-ImageMagick7 versions prior to 7.1.2-11. Discovered by the Government Technology Agency of Singapore Cyber Security Group (GovTech CSG), this memory leak can occur when processing specially crafted image files. An attacker could potentially exploit this vulnerability to cause a denial-of-service condition on a vulnerable Android device by repeatedly triggering the memory leak…
Detection coverage 2
Detect Android ImageMagick Memory Growth
mediumDetects unusual memory growth of processes using Android-ImageMagick7, potentially indicating a memory leak.
Detect Potential DoS via Repeated Image Processing
lowDetects repeated process creations involving image processing tools, potentially indicating a DoS attempt.
Detection queries are kept inside the platform. Get full rules →
Indicators of compromise
1