CVE-2026-21683

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in icStatusCMM::CIccEvalCompare::EvaluateProfile. This...

CVE-2026-21681

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Undefined Behavior runtime error. This vulnerability affects users of the iccDEV library who...

CVE-2026-21692 iccDEV has Type Confusion in ToXmlCurve() at IccXML/IccLibXML/IccMpeXml.cpp

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in ToXmlCurve at IccXML/IccLibXML/IccMpeXml.cpp. This...

CVE-2026-21690 iccDEV has Type Confusion in CIccTagXmlTagData::ToXml()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in CIccTagXmlTagData::ToXml. This vulnerability affects users o...

EUVD-2026-1396

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in icStatusCMM::CIccEvalCompare::EvaluateProfile. This...

CVE-2026-21502 NULL Pointer Dereference in iccDEV XML Tag Parser

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to NULL pointer dereference via the XML tag parser. This issue has been patched in version 2.3.1.2...

CVE-2026-21495

The CVE-2026-21495 issue affects iccDEV prior to version 2.3.1.2, where the TIFF Image Reader contains a division-by-zero flaw. Multiple sources (NVD/Red Hat/CVE, PT Security) consistently describe: affected product iccDEV, vulnerable component TIFF Image Reader, root cause division by zero, and ...

iccDEV 代码问题漏洞

iccDEV is an open source color configuration code library from International Color Consortium. A code issue vulnerability exists in iccDEV versions prior to 2.3.1.2, which stems from a type confusion in the CIccProfileXml::ParseBasic function in the IccXML/IccLibXML/IccProfileXml.cpp file...

iccDEV 缓冲区错误漏洞

iccDEV is a color configuration codebase open-sourced by the International Color Consortium ICC. A buffer error vulnerability exists in versions prior to iccDEV 2.3.1.2, which stems from a heap buffer overflow in the ToneMap parser...

iccDEV 安全漏洞

iccDEV is an open source color configuration codebase from the International Color Consortium ICC. A security vulnerability exists in iccDEV versions prior to 2.3.1.2, which stems from a null pointer dereference in the XML tag parser...

PT-2026-1504

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with International Color Consortium ICC color management profiles. A flaw exists in versions before 2.3.1.2 that can lead to a unicode buffer...