Lucene search
K

9 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/28 12:27 a.m.5 views

CVE-2026-24852

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, a heap buffer over-read when the strlen function attempts to read a non-null-terminated buffer potentially leaking heap memory...

6.1CVSS6AI score0.00249EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/01/24 1:27 a.m.24 views

CVE-2026-24412 iccDEV has Heap Buffer Overflow in icCurvesFromXml()

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have aHeap Buffer Overflow vulnerability in the CIccTagXmlSegmentedCurve::ToXml function. This occurs when user-controllable input is unsafely incorporate...

8.8CVSS0.00524EPSS
Exploits1References3
CVE
CVE
added 2026/01/24 1:27 a.m.23 views

CVE-2026-24412

CVE-2026-24412 affects iccDEV libraries for ICC color profiles. Versions 2.3.1.1 and earlier contain a heap buffer overflow in the internal function CIccTagXmlSegmentedCurve::ToXml() when user-controlled input is unsafely embedded in ICC profile data or other binary blobs. This can lead to DoS, d...

8.8CVSS5.6AI score0.00524EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/01/24 1:2 a.m.5 views

EUVD-2026-4608

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccTagNamedColor2::SetSize. This occurs when user-controllable input is unsafely incorporated into ICC profi...

8.8CVSS5.6AI score0.00524EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/24 12:59 a.m.31 views

CVE-2026-24405 iccDEV has Heap Buffer Overflow in CIccMpeCalculator::Read()

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read. This occurs when user-controllable input is unsafely incorporated into ICC profile...

8.8CVSS0.00524EPSS
Exploits1References3
OSV
OSV
added 2026/01/24 12:59 a.m.5 views

CVE-2026-24405 iccDEV has Heap Buffer Overflow in CIccMpeCalculator::Read()

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read. This occurs when user-controllable input is unsafely incorporated into ICC profile...

8.8CVSS5.6AI score0.00524EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/24 12:46 a.m.4 views

CVE-2026-24403 iccDEV Undefined Behavior in CIccProfile::CheckHeader() Leads to Integer Overflow

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, an integer overflow vulnerability exists in icValidateStatus CIccProfile::CheckHeader when user-controllable input is incorporated into profile data...

7.1CVSS5.9AI score0.00395EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/07 8:58 p.m.24 views

CVE-2026-21682 iccDEV has heap-buffer-overflow in CIccXmlArrayType::ParseText()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow in CIccXmlArrayType::ParseText. This vulnerability affects users of the...

8.8CVSS0.00302EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/06 1:57 p.m.2 views

CVE-2026-21489 iccDEV has Out-of-bounds Read and Integer Underflow (Wrap or Wraparound)

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have Out-of-bounds Read and Integer Underflow Wrap or Wraparound vulnerabilities in its CIccCalculatorFunc::SequenceNeedTempReset function. This issue is fixed in version 2.3.1....

6.1CVSS6.5AI score0.00112EPSS
Exploits0References2
Rows per page
Query Builder