CVE-2023-48736

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 18, 2023

Updated: Nov 24, 2023

CWE ID 125

Summary

CVE-2023-48736 is a vulnerability affecting International Color Consortium DemoIccMAX 3e7948b. It involves an out-of-bounds read issue in the CIccCLUT::Interp2d function located in IccTagLut.cpp, which is part of the libSampleICC.a library. This flaw could potentially allow an attacker to read memory outside of the intended boundaries, leading to potential security risks. The impact of this vulnerability is currently unknown, but users are advised to update to a patched version as soon as available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Color

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/td0EKJ
https://www.cve.org/CVERecord?id=CVE-2023-48736
https://nvd.nist.gov/vuln/detail/CVE-2023-48736

Back to Vulnerability Database

CVE-2023-48736

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations