CVE-2026-21486 | InternationalColorConsortium iccDEV up to 2.3.1.1/2.3.1.2 CIccSparseMatrix heap-based overflow (GHSA-mg98-j5q2-674w)

Inserito da Angelo Barbosa | Gen 6, 2026 | CVE

A vulnerability identified as critical has been detected in InternationalColorConsortium iccDEV up to 2.3.1.1/2.3.1.2. This affects the function CIccSparseMatrix::CIccSparseMatrix. The manipulation leads to heap-based buffer overflow.

This vulnerability is uniquely identified as CVE-2026-21486. The attack is possible to be carried out remotely. No exploit exists.

You should upgrade the affected component.

CVE-2026-21486 | InternationalColorConsortium iccDEV up to 2.3.1.1/2.3.1.2 CIccSparseMatrix heap-based overflow (GHSA-mg98-j5q2-674w)

Post correlati

CVE-2024-33670 | Passbolt up to 4.6.1 API cross site scripting

CVE-2023-44251 | Fortinet FortiWAN up to 5.1.2/5.2.1 HTTP Request path traversal (FG-IR-23-265)

CVE-2023-6293 | Robin Buschmann sequelize-typescript up to 2.1.5 prototype pollution

CVE-2023-49031 | Advanced eMarketing Platform 6.8.3.0 OpenLogFile Endpoint filename path traversal