Lucene search
K

6 matches found

NVD
NVD
added 2026/02/03 7:16 p.m.9 views

CVE-2026-25503

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, type confusion allowed malformed ICC profiles to trigger undefined behavior when loading invalid icImageEncodingType values causin...

7.1CVSS0.00253EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/08 3:15 a.m.5 views

CVE-2026-21493

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below are vulnerable to Type Confusion in its CIccSingleSampledeCurveXml class during XML Curve Serialization. This issue is fixed in version 2.3.1.2...

6.6CVSS6.8AI score0.00153EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/01/08 12:0 a.m.4 views

iccDEV 安全漏洞

iccDEV is an open source color configuration codebase from the International Color Consortium. A security vulnerability exists in iccDEV prior to version 2.3.1.2, which stems from a heap buffer overflow in the CIccCLUT::Init function that could lead to memory corruption...

8.8CVSS7AI score0.00365EPSS
Exploits1References4
EUVD
EUVD
added 2026/01/07 9:50 p.m.4 views

EUVD-2026-1388

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in CIccTagXmlTagData::ToXml. This vulnerability affects users o...

6.3CVSS6.3AI score0.0019EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/01/07 9:23 p.m.3 views

CVE-2026-21685 iccDEV has Undefined Behavior in CIccTagLut16::Read()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have Undefined Behavior in CIccTagLut16::Read. This vulnerability affects users of the iccDEV libra...

7.1CVSS6.4AI score0.00243EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.6 views

PT-2026-2075

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with ICC color management profiles. A heap-buffer-overflow issue exists in the IccTagXml function in versions prior to 2.3.1.2. Recommendations...

7.8CVSS6.6AI score0.00166EPSS
Exploits1References8
Rows per page
Query Builder