Color

Iccdev

84 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2026-24409

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.01.2026 01:09:52
  • Zuletzt bearbeitet 30.01.2026 18:24:52

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior and Null Pointer Deference in CIccTagXmlFloatNum<>::ParseXml(). This occurs when us...

8.8

CVE-2026-24407

Exploit
  • EPSS 0.2%
  • Veröffentlicht 24.01.2026 01:05:52
  • Zuletzt bearbeitet 30.01.2026 18:24:44

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have Undefined Behavior in icSigCalcOp(). This occurs when user-controllable input is unsafely incorporated...

8.8

CVE-2026-24406

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.01.2026 01:02:33
  • Zuletzt bearbeitet 30.01.2026 18:24:36

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccTagNamedColor2::SetSize(). This occurs when user-controlla...

8.8

CVE-2026-24405

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.01.2026 00:59:32
  • Zuletzt bearbeitet 30.01.2026 18:24:30

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccMpeCalculator::Read(). This occurs when user-controllable ...

8.8

CVE-2026-24404

Exploit
  • EPSS 0.17%
  • Veröffentlicht 24.01.2026 00:55:26
  • Zuletzt bearbeitet 30.01.2026 18:24:22

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, CIccXmlArrayType() contains a Null Pointer Dereference and Undefined Behavior vulnerability. This occur...

8.8

CVE-2026-24403

Exploit
  • EPSS 0.22%
  • Veröffentlicht 24.01.2026 00:46:14
  • Zuletzt bearbeitet 30.01.2026 18:23:11

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, an integer overflow vulnerability exists in icValidateStatus CIccProfile::CheckHeader() when user-contr...

8.8

CVE-2026-22861

Exploit
  • EPSS 0.06%
  • Veröffentlicht 13.01.2026 20:20:39
  • Zuletzt bearbeitet 16.01.2026 18:46:06

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles. Prior to 2.3.1.2, There is a heap-based buffer overflow in SIccCalcOp::Descr...

8.8

CVE-2026-22255

Exploit
  • EPSS 0.05%
  • Veröffentlicht 08.01.2026 15:29:36
  • Zuletzt bearbeitet 14.01.2026 18:48:22

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow vulnerability in `CIcc...

8.8

CVE-2026-22047

Exploit
  • EPSS 0.13%
  • Veröffentlicht 07.01.2026 22:15:46
  • Zuletzt bearbeitet 14.01.2026 18:45:16

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow vulnerability in `SIcc...

8.8

CVE-2026-21692

Exploit
  • EPSS 0.13%
  • Veröffentlicht 07.01.2026 22:15:45
  • Zuletzt bearbeitet 12.01.2026 18:27:18

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in `ToXmlCurve...