PT-2026-2077 · Iccdev · Iccdev

Chriscoxart

·

Publicado

2026-01-07

·

Atualizado

2026-01-08

·

CVE-2026-21680

CVSS v3.1

7.5

Alta

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2
Description iccDEV is a set of libraries and tools for interacting with International Color Consortium (ICC) color management profiles. Versions prior to 2.3.1.2 contain a NULL pointer dereference issue that affects users processing ICC color profiles. The issue resides in the CIccProfile::CheckTagTypes() function.
Recommendations Update to iccDEV version 2.3.1.2 or later.

Exploit

Correção

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

CVE-2026-21680
GHSA-MGP7-W4W3-MHX4

Produtos afetados

Iccdev