Color

Iccdev

59 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2026-24856

Exploit
  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 21:16:13
  • Zuletzt bearbeitet 03.02.2026 14:07:59

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Versions prior to 2.3.1.2 have an undefined behavior issue when floating-point NaN values are converted to un...

8.1

CVE-2026-24852

  • EPSS 0.03%
  • Veröffentlicht 28.01.2026 00:27:11
  • Zuletzt bearbeitet 03.02.2026 14:26:13

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, a heap buffer over-read when the strlen() function attempts to read a non-null-term...

8.8

CVE-2026-24412

Exploit
  • EPSS 0.11%
  • Veröffentlicht 24.01.2026 01:27:42
  • Zuletzt bearbeitet 30.01.2026 18:25:05

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have aHeap Buffer Overflow vulnerability in the CIccTagXmlSegmentedCurve::ToXml() function. This occurs whe...

8.8

CVE-2026-24411

Exploit
  • EPSS 0.13%
  • Veröffentlicht 24.01.2026 01:16:31
  • Zuletzt bearbeitet 30.01.2026 18:25:00

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior in CIccTagXmlSegmentedCurve::ToXml(). This occurs when user-controllable input is u...

8.8

CVE-2026-24410

Exploit
  • EPSS 0.11%
  • Veröffentlicht 24.01.2026 01:12:32
  • Zuletzt bearbeitet 30.01.2026 18:24:57

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior and Null Pointer Deference in CIccProfileXml::ParseBasic(). This occurs when user-c...

8.8

CVE-2026-24409

Exploit
  • EPSS 0.11%
  • Veröffentlicht 24.01.2026 01:09:52
  • Zuletzt bearbeitet 30.01.2026 18:24:52

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior and Null Pointer Deference in CIccTagXmlFloatNum<>::ParseXml(). This occurs when us...

8.8

CVE-2026-24407

Exploit
  • EPSS 0.13%
  • Veröffentlicht 24.01.2026 01:05:52
  • Zuletzt bearbeitet 30.01.2026 18:24:44

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior in icSigCalcOp(). This occurs when user-controllable input is unsafely incorporated...

8.8

CVE-2026-24406

Exploit
  • EPSS 0.11%
  • Veröffentlicht 24.01.2026 01:02:33
  • Zuletzt bearbeitet 30.01.2026 18:24:36

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccTagNamedColor2::SetSize(). This occurs when user-controlla...

8.8

CVE-2026-24405

Exploit
  • EPSS 0.11%
  • Veröffentlicht 24.01.2026 00:59:32
  • Zuletzt bearbeitet 30.01.2026 18:24:30

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read(). This occurs when user-controllable ...

8.8

CVE-2026-24404

Exploit
  • EPSS 0.11%
  • Veröffentlicht 24.01.2026 00:55:26
  • Zuletzt bearbeitet 30.01.2026 18:24:22

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, CIccXmlArrayType() contains a Null Pointer Dereference and Undefined Behavior vulnerability. This occur...