CVE-2026-24404

iccDEV has Null Pointer Deference and Undefined Behavior in CIccXmlArrayType()

CVSS 7.1 HIGHEPSS 0.4%CWE-20 CWE-476 CWE-690 CWE-758

In short

A flaw in iccDEV's color profile handling allows attackers to crash the application or potentially execute code by providing specially crafted input that causes the program to access invalid memory locations.

Technical detail

CIccXmlArrayType() fails to validate user-supplied input before dereferencing pointers in ICC profile data, leading to null pointer dereference and undefined behavior. Attack vector is remote/local via malformed ICC profiles or structured binary data; exploitation may result in DoS, data corruption, logic bypass, or arbitrary code execution.

Summary generated and translated by AI from the official description.

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In versions 2.3.1.1 and below, CIccXmlArrayType() contains a Null Pointer Dereference and Undefined Behavior vulnerability. This occurs when user-controllable input is unsafely incorporated into ICC profile data or other structured binary blobs. Successful exploitation may allow an attacker to perform DoS, manipulate data, bypass application logic and Code Execution. This issue has been fixed in version 2.3.1.2.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H

Affected products

InternationalColorConsortium · iccDEV

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/InternationalColorConsortium/iccDEV/commit/cd637eb33f0c8055fa54d8776e00555d3d39ef0c https://github.com/InternationalColorConsortium/iccDEV/issues/488 https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-hqfg-45jp-hp9f