CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

OSV•added 2026/05/15 2:1 p.m.•2 views

OESA-2026-2326 lcms2 security update

LittleCMS intends to be an OPEN SOURSE small-footprint color management engine,with special focus on accuracy and performence.It uses the International Color Consortium standard ICC, which is the modern standard when regarding to color management. The ICC specification is widely used and is...

4CVSS5.8AI score0.00017EPSS

Exploits0References2

NVD•added 2026/04/30 7:16 a.m.•1 views

CVE-2026-42798

Little CMS lcms2 2.16 through 2.18 before 2.19 has an integer overflow in ParseCube in cmscgats.c...

4CVSS0.00017EPSS

Exploits0References3

ATTACKERKB•added 2026/04/30 6:34 a.m.•1 views

CVE-2026-42798

Little CMS lcms2 2.16 through 2.18 before 2.19 has an integer overflow in ParseCube in cmscgats.c...

4CVSS5.2AI score0.00017EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/04/30 6:34 a.m.•27 views

CVE-2026-42798

Little CMS lcms2 2.16 through 2.18 before 2.19 has an integer overflow in ParseCube in cmscgats.c...

4CVSS0.00017EPSS

Exploits0References3

Vulnrichment•added 2026/04/30 6:34 a.m.•2 views

CVE-2026-42798

Little CMS lcms2 2.16 through 2.18 before 2.19 has an integer overflow in ParseCube in cmscgats.c...

4CVSS5.2AI score0.00017EPSS

Exploits0References3

CNNVD•added 2026/04/30 12:0 a.m.•6 views

Little CMS 输入验证错误漏洞

Little CMS lcms or liblcms is an open-source color management system developed by Marti Maria. This system offers features such as black-point compensation, processing of various pixel formats, and configuration file editing. Versions 2.16 to 2.18 of Little CMS, as well as earlier versions, had a...

4CVSS5.9AI score0.00017EPSS

Exploits0References1

Positive Technologies•added 2026/04/30 12:0 a.m.•0 views

PT-2026-36080

Name of the Vulnerable Software and Affected Versions Little CMS lcms2 versions 2.16 through 2.18 Description An integer overflow exists in the ParseCube function within the cmscgats.c file. An integer overflow occurs when a program attempts to store a numeric value that is too large for the...

4CVSS5.9AI score0.00017EPSS

Exploits0References11

Tenable Nessus•added 2018/10/30 12:0 a.m.•37 views

SUSE SLED12 / SLES12 Security Update : lcms2 (SUSE-SU-2018:3545-1)

This update for lcms2 fixes the following security issues : CVE-2016-10165: The TypeMLURead function allowed remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggered an out-of-bounds heap read bsc1021364. CVE-2018-16435...

7.1CVSS6AI score0.00555EPSS

Exploits1References9

RedHat Linux•added 2018/10/24 10:6 p.m.•3 views

lcms2: Integer overflow in AllocateDataSet() in cmscgats.c leading to heap-based buffer overflow

Little CMS aka Little Color Management System 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile...

5.5CVSS7.6AI score0.0045EPSS

Exploits1References4

Veracode•added 2018/09/07 5:40 a.m.•25 views

Denial Of Service (DoS)

liblcms2.so is vulnerable to denial of service. The vulnerability exists in the AllocateDataSet function of cmscgats.c because of not limiting the size of the Data from integer multiplication, leading to an attack if a malicious IT8 calibration file is passed to the second argument to...

5.5CVSS5.4AI score0.0045EPSS

Exploits1References8Affected Software2

NVD•added 2018/09/04 12:29 a.m.•15 views

CVE-2018-16435

5.5CVSS5.8AI score0.0045EPSS

Exploits1References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by