CVE-2026-34546

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

iccDEV versions prior to 2.3.1.6

The iccDEV software, which includes libraries and tools for working with ICC color management profiles, is affected by an issue where a specially crafted TIFF input can cause Undefined Behavior (UB) due to division by zero in the TIFF handling code paths used by iccTiffDump.

Versions prior to 2.3.1.6 are affected.

Update to version 2.3.1.6 or later.

Exploit

Fix

Divide By Zero

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-369

Related Identifiers

CVE-2026-34546

GHSA-FXGQ-WF5V-25PQ

Affected Products

Iccdev

CVE-2026-34546

Weakness Enumeration

Related Identifiers

Affected Products

References · 8