Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opendesign drawings sdk vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-43582
A Use-After-Free Remote Vulnerability exists when reading a DWG file using Open Design Alliance Drawings SDK prior to 2022.11. The specific issue exists within the parsing of DWG files. The issue results from the lack of validating the existence of an object prior to performing o...
Opendesign Drawings Sdk
7.8
CVSSv3
CVE-2022-28807
An issue exists in Open Design Alliance Drawings SDK prior to 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current proce...
Opendesign Drawings Sdk
7.8
CVSSv3
CVE-2022-28808
An issue exists in Open Design Alliance Drawings SDK prior to 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process.
Opendesign Drawings Sdk
7.8
CVSSv3
CVE-2023-22669
Parsing of DWG files in Open Design Alliance Drawings SDK prior to 2023.6 lacks proper validation of the length of user-supplied XRecord data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the...
Opendesign Drawings Sdk
7.8
CVSSv3
CVE-2021-44047
A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance Drawings SDK prior to 2022.11. The specific issue exists with parsing DWF/DWFX files. Crafted data in a DWF/DWFX file and lack of proper validation of input data can trigger a write oper...
Opendesign Drawings Sdk
3.3
CVSSv3
CVE-2021-43273
An Out-of-bounds Read vulnerability exists in the DGN file reading procedure in Open Design Alliance Drawings SDK prior to 2022.11. Crafted data in a DGN file and lack of verification of input data can trigger a read past the end of an allocated buffer. An attacker can leverage t...
Opendesign Drawings Sdk
7.8
CVSSv3
CVE-2021-31784
An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK prior to 2021.6 on all supported by ODA platforms in static configuration. This can allow malicious users to cause a crash, potentially enabling a denial of service atta...
Opendesign Drawings Sdk
Siemens Comos
7.8
CVSSv3
CVE-2021-32936
An out-of-bounds write issue exists in the DXF file-recovering procedure in the Drawings SDK (All versions before 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow malicious users t...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
7.1
CVSSv3
CVE-2021-32938
Drawings SDK (All versions before 2022.4) are vulnerable to an out-of-bounds read due to parsing of DWG files resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows malicious users to cause a de...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
7.1
CVSSv3
CVE-2021-32940
An out-of-bounds read issue exists in the DWG file-recovering procedure in the Drawings SDK (All versions before 2022.5) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allow malicious users to ...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »