Iccdev · Iccdev · CVE-2026-21680
**Name of the Vulnerable Software and Affected Versions**
iccDEV versions prior to 2.3.1.2
**Description**
iccDEV is a set of libraries and tools for interacting with International Color Consortium (ICC) color management profiles. Versions prior to 2.3.1.2 contain a NULL pointer dereference issue that affects users processing ICC color profiles. The issue resides in the `CIccProfile::CheckTagTypes()` function.
**Recommendations**
Update to iccDEV version 2.3.1.2 or later.