Threats Tagged 'cve-2026-30987'
View all threats tagged with 'cve-2026-30987'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-30987'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-30987: CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') in InternationalColorConsortium iccDEVCVE-2026-30987 0 CVE-2026-30987 is a high-severity stack-based buffer overflow vulnerability in the InternationalColorConsortium's iccDEV library versions prior to 2.3.1.5. The flaw exists in the CIccTagNum<>::GetValues() function, where input size is not properly checked before copying data to a stack buffer, leading to potential stack memory corruption or application crashes. Exploitation requires local access and user interaction, but no privileges are needed. Successful exploitation could allow attackers to execute arbitrary code, compromise confidentiality, integrity, and availability of affected systems. No known exploits are currently reported in the wild. The vulnerability affects software that processes ICC color profiles, which are widely used in imaging, printing, and color management applications. Organizations relying on iccDEV for color profile handling should upgrade to version 2. Join the discussion | CVE Database V5 | 03/10/2026, 17:59:17 UTC Added: 03/10/2026, 18:16:56 UTC |
Showing 1 to 1 of 1 result