CVE-2026-21498 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.…
Medium CVSS: 5.5

CVE-2026-21498

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to NULL pointer dereference via the XML calculator parser. This issue has been patched in version 2.3.1.2.
Vendor
Color
Product
Iccdev
CWE
CWE-20
Yayın Tarihi
2026-01-07 18:15:53
Güncelleme
2026-01-09 21:59:54
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-20 Iccdev MEDIUM Color 2026

Referanslar

https://github.com/InternationalColorConsortium/iccDEV/commit/75f124f40ba45491211cb4b67f0e05b7c7d59553 https://github.com/InternationalColorConsortium/iccDEV/commit/bdfa31940726aaabb0a6f19194d9062ba0598959 https://github.com/InternationalColorConsortium/iccDEV/issues/375 https://github.com/InternationalColorConsortium/iccDEV/pull/404 https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-6822-qvxq-m736