CVSS 3.1 Score 6.5 of 10 (medium)


Published Oct 30, 2023
Updated: Nov 4, 2023
CWE ID 787


CVE-2023-46866 is a vulnerability found in International Color Consortium DemoIccMAX 79ecb74. The vulnerability is related to the CIccCLUT::Interp3d function in IccProfLib/IccTagLut.cpp in libSampleICC.a, which attempts to access array elements at out-of-bounds indexes. The affected products include tQWKpa. The risk score for this vulnerability is 25, with a base severity of MEDIUM and a base score of 6.5 according to the NIST National Vulnerability Database (NVD). It requires user interaction and has a network attack vector. The potential impact includes high availability impact, but no integrity or confidentiality impacts are expected. Remediation steps or further details on the potential danger are not provided in the available information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-46866 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options