CVE-2026-24405

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read. This occurs when user-controllable input is unsafely incorporated into ICC profile...

EUVD-2026-4609

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read. This occurs when user-controllable input is unsafely incorporated into ICC profile...

CVE-2026-24405 iccDEV has Heap Buffer Overflow in CIccMpeCalculator::Read()

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read. This occurs when user-controllable input is unsafely incorporated into ICC profile...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003475)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003475 advisory. The tcpspliceread function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service infinite loop and soft lockup via...

CVE-2025-71094

In the Linux kernel, the following vulnerability has been resolved: net: usb: asix: validate PHY address before use The ASIX driver reads the PHY address from the USB device via asixreadphyaddr. A malicious or faulty device can return an invalid address = PHYMAXADDR, which causes a warning in...

libpng 缓冲区错误漏洞

libpng is The PNG Development Group's open source PNG reference library for creating, reading and writing PNG graphics files. A buffer error vulnerability exists in libpng versions 1.6.51 through 1.6.53, which stems from a heap buffer over-read in the pngimagefinishread function...

PT-2026-2082

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 contain Undefined Behavior in the CIccTagLut16::Re...

iccDEV 安全漏洞

iccDEV is an open source color configuration code library from the International Color Consortium. A security vulnerability exists in iccDEV versions prior to 2.3.1.2, which stems from undefined behavior in the CIccTagLut16::Read function...

CVE-2026-21488 iccDEV has Out-of-bounds Read, Heap-based Buffer Overflow and Improper Null Termination

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below are vulnerable to Out-of-bounds Read, Heap-based Buffer Overflow and Improper Null Termination through its CIccTagText::Read function. This issue is fixed in version 2.3.1.2...

EUVD-2025-203317

A vulnerability was found in ketr JEPaaS up to 7.2.8. This impacts the function readAllPostil of the file /je/postil/postil/readAllPostil. Performing manipulation of the argument keyWord results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be...

CVE-2025-63888

The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24 contains a remote code execution vulnerability...

CVE-2025-63888

The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24 contains a remote code execution vulnerability...

PT-2025-47611

Name of the Vulnerable Software and Affected Versions ThinkPHP version 5.0.24 Description The read function within the thinkphplibrarythinktemplatedriverFile.php file in ThinkPHP 5.0.24 has a remote code execution issue. The function allows for the execution of arbitrary code. Recommendations At...

ThinkPHP 安全漏洞

ThinkPHP is a PHP-based, open-source, lightweight web application development framework from China Top Thinking Information Technology ThinkPHP. A security vulnerability exists in ThinkPHP version 5.0.24, which originates from a remote code execution vulnerability in the read function in the file...

CVE-2025-63888

The read function in file thinkphp\library\think\template\driver\File.php in ThinkPHP 5.0.24 contains a remote code execution vulnerability...

EUVD-2019-7662

Malware in sbrugna...

EUVD-2016-3196

Malware in sbrugna...

EUVD-2021-12383

Malware in sbrugna...

EUVD-2020-23200

Malware in sbrugna...

EUVD-2019-17787

Malware in sbrugna...