Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

InternationalColorConsortium — Vulnerabilities & Security Advisories 104

Browse all 104 CVE security advisories affecting InternationalColorConsortium. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The International Color Consortium develops open standards and software tools for color management, primarily facilitating accurate color reproduction across diverse devices and operating systems. Its ecosystem includes widely used libraries like Little CMS and ICC profiles, which are integral to graphic design, printing, and digital imaging workflows. Historically, vulnerabilities in these components have frequently involved buffer overflows and integer overflows, leading to remote code execution or denial-of-service conditions. While cross-site scripting and privilege escalation issues are less common in the core libraries, they occasionally appear in associated web-based management interfaces. The consortium maintains a proactive security posture by publishing detailed CVE records, currently totaling 104 entries, which reflect ongoing efforts to patch legacy code and secure data processing routines. These incidents underscore the critical need for rigorous input validation in color processing algorithms to prevent exploitation by malicious actors targeting high-value creative industries.

Top products by InternationalColorConsortium: iccDEV
CVE IDTitleCVSSSeverityPublished
CVE-2026-30984 iccDEV has a heap out-of-bounds read in CIccCalculatorFunc::ApplySequence() — iccDEVCWE-125 6.1 Medium2026-03-10
CVE-2026-30983 iccDEV has a stack buffer overflow in icFixXml() — iccDEVCWE-120 7.8 High2026-03-10
CVE-2026-30982 iccDEV has a heap out-of-bounds read in CIccPcsXform::pushXYZConvert() — iccDEVCWE-122 6.1 Medium2026-03-10
CVE-2026-30981 iccDEV has a heap-buffer-overflow read in CIccXmlArrayType<> — iccDEVCWE-120 6.1 Medium2026-03-10
CVE-2026-30979 iccDEV has a heap-based buffer overflow in CIccCalculatorFunc::InitSelectOp() — iccDEVCWE-120 7.8 High2026-03-10
CVE-2026-30978 Heap-use-after-free in CIccCmm::AddXform() — iccDEVCWE-416 7.8 High2026-03-10
CVE-2026-27692 iccDEV has HBO in CIccTagTextDescription::Release() — iccDEVCWE-125 7.1 High2026-02-25
CVE-2026-27691 iccDEV has SIO in parse3DTable() at iccFromCube.cpp Line 218 — iccDEVCWE-190 6.2 Medium2026-02-25
CVE-2026-25634 iccDEV memcpy-param-overlap in CIccTagMultiProcessElement::Apply() — iccDEVCWE-119 7.8 High2026-02-06
CVE-2026-25585 iccDEV vulnerable to OOB in CIccXform3DLut::Apply() — iccDEVCWE-119 7.8 High2026-02-04
CVE-2026-25584 iccDEV vulnerable to Stack-based Buffer Overflow in CIccTagFloatNum::GetValues() — iccDEVCWE-119 7.8 High2026-02-04
CVE-2026-25583 iccDEV vulnerable to Heap Buffer Overflow in CIccFileIO::Read8() — iccDEVCWE-119 7.8 High2026-02-04
CVE-2026-25582 iccDEV vulnerable to Heap Buffer Overflow in CIccIO::WriteUInt16Float() — iccDEVCWE-122 7.8 High2026-02-04
CVE-2026-25502 iccDEV is vulnerable to stack-buffer-overflow in icFixXml() — iccDEVCWE-121 7.8 High2026-02-03
CVE-2026-25503 iccDEV Has Type Confusion in CIccTagEmbeddedHeightImage::Validate() — iccDEVCWE-704 7.1 High2026-02-03
CVE-2026-24856 iccDEV has UB runtime error in <icTagTypeSignature> — iccDEVCWE-20 7.8 High2026-01-28
CVE-2026-24852 iccDEV has a heap-buffer-overflow in icXmlParseTextString() — iccDEVCWE-122 6.1 Medium2026-01-28
CVE-2026-24412 iccDEV has Heap Buffer Overflow in icCurvesFromXml() — iccDEVCWE-20 8.8 High2026-01-24
CVE-2026-24411 iccDEV has Undefined Behavior and Null Pointer Deference in CIccTagXmlSegmentedCurve::ToXml() — iccDEVCWE-20 7.1 High2026-01-24
CVE-2026-24410 iccDEV has Undefined Behavior and Null Pointer Deference in CIccProfileXml::ParseBasic() — iccDEVCWE-20 7.1 High2026-01-24
CVE-2026-24409 iccDEV has Undefined Behavior and Null Pointer Deference in CIccTagXmlFloatNum<>::ParseXml() — iccDEVCWE-20 7.1 High2026-01-24
CVE-2026-24407 iccDEV has Undefined Behavior in icSigCalcOp() — iccDEVCWE-20 7.1 High2026-01-24
CVE-2026-24406 iccDEV has Heap Buffer Overflow in CIccTagNamedColor2::SetSize() — iccDEVCWE-20 8.8 High2026-01-24
CVE-2026-24405 iccDEV has Heap Buffer Overflow in CIccMpeCalculator::Read() — iccDEVCWE-20 8.8 High2026-01-24
CVE-2026-24404 iccDEV has Null Pointer Deference and Undefined Behavior in CIccXmlArrayType() — iccDEVCWE-20 7.1 High2026-01-24
CVE-2026-24403 iccDEV Undefined Behavior in CIccProfile::CheckHeader() Leads to Integer Overflow — iccDEVCWE-20 7.1 High2026-01-24
CVE-2026-22861 iccDEV has a heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp — iccDEVCWE-252 8.8 High2026-01-13
CVE-2026-22255 iccDEV has heap-buffer-overflow in CIccCLUT::Init() at IccProfLib/IccTagLut.cpp — iccDEVCWE-20 8.8 High2026-01-08
CVE-2026-22047 iccDEV has heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp — iccDEVCWE-20 8.8 High2026-01-07
CVE-2026-22046 iccDEV has heap-buffer-overflow in CIccProfileXml::ParseBasic() at IccXML/IccLibXML/IccProfileXml.cpp — iccDEVCWE-20 8.8 High2026-01-07

This page lists every published CVE security advisory associated with InternationalColorConsortium. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.