Lucene search
K

4 matches found

NVD
NVD
added 2026/01/24 1:15 a.m.8 views

CVE-2026-24405

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read. This occurs when user-controllable input is unsafely incorporated into ICC profile...

8.8CVSS0.00524EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/24 1:9 a.m.5 views

CVE-2026-24409 iccDEV has Undefined Behavior and Null Pointer Deference in CIccTagXmlFloatNum<>::ParseXml()

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior and Null Pointer Deference in CIccTagXmlFloatNum::ParseXml. This occurs when user-controllable input is unsafely incorporated into...

7.1CVSS5.8AI score0.0031EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/01/24 12:55 a.m.4 views

CVE-2026-24404

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, CIccXmlArrayType contains a Null Pointer Dereference and Undefined Behavior vulnerability. This occurs when user-controllable input is unsafely...

8.8CVSS5.8AI score0.00395EPSS
Exploits1References4Affected Software1
RedHat Linux
RedHat Linux
added 2011/02/23 9:16 p.m.6 views

acroread: critical APSB11-03

Integer overflow in ACE.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to execute arbitrary code via crafted ICC data, a different vulnerability than CVE-2011-0596, CVE-2011-0599, and CVE-2011-0602...

9.3CVSS6.3AI score0.09839EPSS
Exploits0References4
Rows per page
Query Builder