Color

Iccdev

84 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2026-21491

Exploit
  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 19:16:08
  • Zuletzt bearbeitet 12.01.2026 18:29:22

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles. A vulnerability present in versions prior to 2.3.1.2 affects users of the ic...

7.1

CVE-2026-21490

Exploit
  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 19:16:08
  • Zuletzt bearbeitet 12.01.2026 18:28:28

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium (ICC) color management profiles. A vulnerability present in versions prior to 2.3.1.2 affects users of the ic...

6.6

CVE-2026-21493

Exploit
  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 14:11:27
  • Zuletzt bearbeitet 14.01.2026 18:46:59

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below are vulnerable to Type Confusion in its CIccSingleSampledeCurveXml class during XML Curve Serialization. This issue is fixed in ve...

7.1

CVE-2026-21489

  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 13:57:42
  • Zuletzt bearbeitet 14.01.2026 18:46:33

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have Out-of-bounds Read and Integer Underflow (Wrap or Wraparound) vulnerabilities in its CIccCalculatorFunc::SequenceNeedTempRese...

7.1

CVE-2026-21488

  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 13:52:21
  • Zuletzt bearbeitet 14.01.2026 18:45:51

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below are vulnerable to Out-of-bounds Read, Heap-based Buffer Overflow and Improper Null Termination through its CIccTagText::Read funct...

7.8

CVE-2026-21486

  • EPSS 0.02%
  • Veröffentlicht 06.01.2026 03:36:45
  • Zuletzt bearbeitet 12.01.2026 20:59:22

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below contain Use After Free, Heap-based Buffer Overflow and Integer Overflow or Wraparound and Out-of-bounds Write vulnerabilities in i...

7.1

CVE-2026-21487

Exploit
  • EPSS 0.04%
  • Veröffentlicht 06.01.2026 03:27:45
  • Zuletzt bearbeitet 12.01.2026 20:57:20

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have an Out-of-bounds Read, Use of Out-of-range Pointer Offset and have Improper Input Validation in its CIccProfile::LoadTag func...

8.8

CVE-2026-21485

Exploit
  • EPSS 0.13%
  • Veröffentlicht 06.01.2026 03:17:47
  • Zuletzt bearbeitet 14.01.2026 18:45:37

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below are prone to have Undefined Behavior (UB) and Out of Memory errors. This issue is fixed in version 2.3.1.2.

8.8

CVE-2026-21677

Exploit
  • EPSS 0.13%
  • Veröffentlicht 06.01.2026 03:11:30
  • Zuletzt bearbeitet 12.01.2026 20:40:01

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have Undefined Behavior in its CIccCLUT::Init function which initializes and sets the size of a CLUT. This issue is fixed in version...

8.8

CVE-2026-21676

Exploit
  • EPSS 0.07%
  • Veröffentlicht 06.01.2026 03:07:36
  • Zuletzt bearbeitet 12.01.2026 20:55:47

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have a Heap-based Buffer Overflow in its CIccMBB::Validate function which checks tag data validity. This issue is fixed in version 2...