Shodan
Vulnerabilities
Vulnerable Software
Color:  Security Vulnerabilities
CVE-2026-21673
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum(). This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in version 2.3.1.1.
CVSS Score
7.8
EPSS Score
0.0
Published
2026-01-06
CVE-2026-21674
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path (iccFromXml). This issue is fixed in version 2.3.1.1.
CVSS Score
3.3
EPSS Score
0.0
Published
2026-01-06
CVE-2026-21675
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a Use After Free vulnerability in the CIccXform::Create() function, where it deletes the hint. This issue is fixed in version 2.3.1.1.
CVSS Score
9.8
EPSS Score
0.002
Published
2026-01-06
CVE-2026-21507
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have an infinite loop in the IccProfile.cpp function, CalcProfileID. This issue is fixed in version 2.3.1.1.
CVSS Score
7.5
EPSS Score
0.001
Published
2026-01-06
CVE-2023-48736
In International Color Consortium DemoIccMAX 3e7948b, CIccCLUT::Interp2d in IccTagLut.cpp in libSampleICC.a has an out-of-bounds read.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-11-18
CVE-2023-47249
In International Color Consortium DemoIccMAX 79ecb74, a CIccXmlArrayType:::ParseText function (for unsigned short) in IccUtilXml.cpp in libIccXML.a has an out-of-bounds read.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-11-05
CVE-2023-46866
In International Color Consortium DemoIccMAX 79ecb74, CIccCLUT::Interp3d in IccProfLib/IccTagLut.cpp in libSampleICC.a attempts to access array elements at out-of-bounds indexes.
CVSS Score
6.5
EPSS Score
0.003
Published
2023-10-30
CVE-2023-46867
In International Color Consortium DemoIccMAX 79ecb74, CIccXformMatrixTRC::GetCurve in IccCmm.cpp in libSampleICC.a has a NULL pointer dereference.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-10-30
CVE-2023-46602
In International Color Consortium DemoIccMAX 79ecb74, there is a stack-based buffer overflow in the icFixXml function in IccXML/IccLibXML/IccUtilXml.cpp in libIccXML.a.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-10-23
CVE-2023-46603
In International Color Consortium DemoIccMAX 79ecb74, there is an out-of-bounds read in the CIccPRMG::GetChroma function in IccProfLib/IccPrmg.cpp in libSampleICC.a.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-10-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved