Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
littlecms little cms color engine vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2013-7455
Double free vulnerability in the DefaultICCintents function in cmscnvrt.c in liblcms2 in Little CMS 2.x prior to 2.6 allows remote malicious users to execute arbitrary code via a malformed ICC profile that triggers an error in the default intent handler.
Littlecms Little Cms Color Engine 2.0
Littlecms Little Cms Color Engine 2.5
Littlecms Little Cms Color Engine 2.2
Littlecms Little Cms Color Engine 2.1
Littlecms Little Cms Color Engine 2.4
Littlecms Little Cms Color Engine 2.3
890
VMScore
CVE-2008-5316
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) prior to 1.16 allows malicious users to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a...
Littlecms Lcms 1.08
Littlecms Lcms 1.07
Littlecms Lcms 1.10
Littlecms Lcms 1.09
Littlecms Little Cms Color Engine 1.09
Littlecms Little Cms Color Engine 1.08
Littlecms Lcms 1.14
Littlecms Lcms 1.13
Littlecms Little Cms Color Engine 1.14
Littlecms Little Cms Color Engine 1.13
Littlecms Little Cms Color Engine 1.12
Littlecms Lcms
Littlecms Lcms 1.12
Littlecms Lcms 1.11
Littlecms Little Cms Color Engine 1.11
Littlecms Little Cms Color Engine 1.10
Littlecms Little Cms Color Engine 1.07
Littlecms Little Cms Color Engine
890
VMScore
CVE-2008-5317
Integer signedness error in the cmsAllocGamma function in src/cmsgamma.c in Little cms color engine (aka lcms) prior to 1.17 allows malicious users to have an unknown impact via a file containing a certain "number of entries" value, which is interpreted improperly, lead...
Littlecms Lcms 1.08
Littlecms Lcms 1.07
Littlecms Little Cms Color Engine 1.14
Littlecms Little Cms Color Engine 1.07
Littlecms Little Cms Color Engine 1.15
Littlecms Lcms 1.12
Littlecms Lcms 1.11
Littlecms Little Cms Color Engine 1.11
Littlecms Little Cms Color Engine 1.10
Littlecms Lcms
Littlecms Lcms 1.14
Littlecms Lcms 1.13
Littlecms Little Cms Color Engine 1.13
Littlecms Little Cms Color Engine 1.12
Littlecms Lcms 1.15
Littlecms Little Cms Color Engine
Littlecms Lcms 1.10
Littlecms Lcms 1.09
Littlecms Little Cms Color Engine 1.09
Littlecms Little Cms Color Engine 1.08
445
VMScore
CVE-2013-4160
Little CMS (lcms2) prior to 2.5, as used in OpenJDK 7 and possibly other products, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via vectors related to (1) cmsStageAllocLabV2ToV4curves, (2) cmsPipelineDup, (3) cmsAllocProfileSeque...
Littlecms Little Cms Color Engine 1.13
Littlecms Little Cms Color Engine 1.12
Littlecms Little Cms Color Engine 1.11
Littlecms Little Cms Color Engine 1.19
Littlecms Little Cms Color Engine 1.18
Littlecms Little Cms Color Engine 2.2
Littlecms Little Cms Color Engine 2.3
Littlecms Little Cms Color Engine
Littlecms Little Cms Color Engine 1.10
Littlecms Little Cms Color Engine 1.09
Littlecms Little Cms Color Engine 1.16
Littlecms Little Cms Color Engine 1.14
Littlecms Little Cms Color Engine 1.07
Littlecms Little Cms Color Engine 2.1
Littlecms Little Cms Color Engine 1.17
Littlecms Little Cms Color Engine 1.15
Littlecms Little Cms Color Engine 1.08
Littlecms Little Cms Color Engine 2.0
383
VMScore
CVE-2018-16435
Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile.
Littlecms Little Cms Color Engine 2.9
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Workstation 6.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
383
VMScore
CVE-2013-4276
Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and previous versions allow remote malicious users to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctrans utility or (2) TIFF image to the tiffdiff utility.
Littlecms Little Cms Color Engine 1.17
Littlecms Little Cms Color Engine 1.11
Littlecms Little Cms Color Engine 1.12
Littlecms Little Cms Color Engine 1.09
Littlecms Little Cms Color Engine 1.10
Littlecms Little Cms Color Engine 1.07
Littlecms Little Cms Color Engine 1.08
Littlecms Little Cms Color Engine 1.15
Littlecms Little Cms Color Engine 1.16
Littlecms Little Cms Color Engine 1.18
Littlecms Little Cms Color Engine
Littlecms Little Cms Color Engine 1.13
Littlecms Little Cms Color Engine 1.14
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started