CVE-2026-21689 | InternationalColorConsortium iccDEV up to 2.3.1.2 ICC Color Profile IccProfileXml.cpp ParseBasic input validation

Inserito da Angelo Barbosa | Gen 7, 2026 | CVE

A vulnerability was found in InternationalColorConsortium iccDEV up to 2.3.1.2 and classified as problematic. This vulnerability affects the function CIccProfileXml::ParseBasic of the file IccXML/IccLibXML/IccProfileXml.cpp of the component ICC Color Profile Handler. Such manipulation leads to improper input validation.

This vulnerability is referenced as CVE-2026-21689. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.

CVE-2026-21689 | InternationalColorConsortium iccDEV up to 2.3.1.2 ICC Color Profile IccProfileXml.cpp ParseBasic input validation

Post correlati

CVE-2024-32343 | Boid CMS 2.1.0 Content cross site scripting

CVE-2025-27445 | rsjoomla RSFirewall Component up to 3.1.5 on Joomla path traversal

CVE-2025-4894 | calmkart Django-sso-server up to 057247929a94ffc358788a37ab99e391379a4d15 common/crypto.py gen_rsa_keys inadequate encryption

CVE-2025-36759 | SolaX Power SolaX Cloud up to 26-06-2025 information disclosure