Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.4 views

CVE-2026-34548

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior UB condition in the XML conversion tooling path iccToXml caused by an implicit conversion from a negative signed integer to icUInt32Number unsigned...

6.2CVSS5.8AI score0.00159EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/31 10:15 p.m.5 views

EUVD-2026-17717

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is an Undefined Behavior UB issue in IccTagLut.cpp where the code performs member access through a null pointer of type CIccApplyCLUT. This issue has been patched in versio...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/10 5:56 p.m.3 views

EUVD-2026-10731

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow write in CIccMatrixMath::SetRange causing memory corruption or crash. This vulnerability is fixed in 2.3.1.5...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/10 5:52 p.m.5 views

EUVD-2026-10725

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a stack buffer overflow in icFixXml strcpy causing stack memory corruption or crash. This vulnerability is fixed in 2.3.1.5...

7.8CVSS6.1AI score0.00142EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.4 views

PT-2026-6329

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.3 Description iccDEV is a set of libraries and tools for interacting with ICC color management profiles. A stack-buffer-overflow exists in the CIccTagFloatNum::GetValues function when processing a malformed ICC...

7.8CVSS6.1AI score0.00214EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.9 views

PT-2026-1408

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below contain Use After Free, Heap-based Buffer Overflow, Integer Overflow or Wraparound,...

7.8CVSS6.7AI score0.00133EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/06 12:0 a.m.5 views

PT-2026-1362

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.1 Description iccDEV is a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain an infinite loop within the CalcProfileID function in the IccProfile.cpp file...

7.5CVSS6.5AI score0.00375EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2020/02/17 12:0 a.m.4 views

The vulnerability of the util/virlog.c utility in the Libvirt management library allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the util/virlog.c utility in the Libvirt control library is related to an error in determining the host name during container startup. Exploiting this vulnerability can allow a perpetrator to access confidential data, compromise its integrity, and cause service failures...

5.9CVSS6.6AI score0.00332EPSS
Exploits0References6Affected Software2
The Hacker News
The Hacker News
added 2019/12/02 2:26 p.m.91 views

New Facebook Tool Let Users Transfer Their Photos and Videos to Google

Facebook has finally started implementing the open source data portability framework as the first phase of 'Data Transfer Project,' an initiative the company launched last year in collaboration with Google, Apple, Microsoft, and Twitter. Facebook today announced a new feature that will allow its...

0.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.4 views

The vulnerability of the CentOS operating system allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the net-snmp-libs-5.1.2 package for the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

10CVSS6.5AI score0.04926EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder