Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have an Out-of-bounds Read, Use of Out-of-range Pointer Offset and have Improper Input Validation in its CIccProfile::LoadTag function. This issue is fixed in version 2.3.1.2.
Published: 2026-01-06
Score: 6.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Memory corruption leading to possible information disclosure or crash
Action: Patch
AI Analysis

Impact

icCdev contains a bug that allows reading data outside the bounds of the buffer allocated for ICC profile tags during the LoadTag operation. This out‑of‑bounds read, coupled with use of an out‑of‑range pointer offset and insufficient input validation, can expose sensitive memory contents or cause an application crash. The vulnerability originates from the CIccProfile::LoadTag function and does not trigger any direct code execution path in the provided data. However, the potential for information disclosure or denial of service is clear.

Affected Systems

The International Color Consortium's iccDEV libraries, versions 2.3.1.1 and earlier, are affected. The fix is available in release 2.3.1.2 of iccDEV.

Risk and Exploitability

CVSS score 6.1 indicates moderate severity. The EPSS score is below 1%, suggesting a low probability of exploitation in the wild, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector involves an application that loads an ICC profile from an untrusted source. A crafted profile could trigger the out‑of‑bounds read and potentially reveal memory content or crash the application. With no publicly documented exploit, the risk remains moderate but warrants patching.

Generated by OpenCVE AI on April 18, 2026 at 08:15 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install iccDEV version 2.3.1.2 or later to apply the vendor fix.
  • Restrict the use of ICC profiles to trusted sources and validate file integrity before loading.
  • Implement application‑level checks to reject ICC profiles that do not meet mandatory structural requirements, preventing the LoadTag function from processing malformed data.

Generated by OpenCVE AI on April 18, 2026 at 08:15 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 12 Jan 2026 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Color
Color iccdev
CPEs cpe:2.3:a:color:iccdev:*:*:*:*:*:*:*:*
Vendors & Products Color
Color iccdev

Tue, 06 Jan 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 06 Jan 2026 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Internationalcolorconsortium
Internationalcolorconsortium iccdev
Vendors & Products Internationalcolorconsortium
Internationalcolorconsortium iccdev

Tue, 06 Jan 2026 04:00:00 +0000

Type Values Removed Values Added
Description iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1.1 and below have an Out-of-bounds Read, Use of Out-of-range Pointer Offset and have Improper Input Validation in its CIccProfile::LoadTag function. This issue is fixed in version 2.3.1.2.
Title iccDEV has Out-of-bounds Read, Use of Out-of-range Pointer Offset and Improper Input Validation
Weaknesses CWE-125
CWE-20
CWE-823
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H'}

Subscriptions

Color Iccdev
Internationalcolorconsortium Iccdev
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-01-06T14:54:15.935Z

Reserved: 2025-12-29T14:34:16.005Z

Link: CVE-2026-21487

cve-icon Vulnrichment

Updated: 2026-01-06T14:54:10.252Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-06T04:15:54.103

Modified: 2026-01-12T20:57:20.303

Link: CVE-2026-21487

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T08:30:35Z

Weaknesses