Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opendesign drawings sdk vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2021-43280
A stack-based buffer overflow vulnerability exists in the DWF file reading procedure in Open Design Alliance Drawings SDK prior to 2022.8. The issue results from the lack of proper validation of the length of user-supplied data before copying it to a stack-based buffer. An attack...
Opendesign Drawings Software Development Kit
6.8
CVSSv2
CVE-2021-43336
An Out-of-Bounds Write vulnerability exists when reading a DXF or DWG file using Open Design Alliance Drawings SDK prior to 2022.11. The specific issue exists within the parsing of DXF and DWG files. Crafted data in a DXF or DWG file (an invalid number of properties) can trigger ...
Opendesign Drawings Software Development Kit
Siemens Teamcenter Visualization 13.1.0
Siemens Solid Edge Se2022
Siemens Jt2go
Siemens Teamcenter Visualization
6.8
CVSSv2
CVE-2021-43391
An Out-of-Bounds Read vulnerability exists when reading a DXF file using Open Design Alliance Drawings SDK prior to 2022.11. The specific issue exists within the parsing of DXF files. Crafted data in a DXF file (an invalid dash counter in line types) can trigger a read past the e...
Opendesign Drawings Software Development Kit
6.8
CVSSv2
CVE-2021-43278
An Out-of-bounds Read vulnerability exists in the OBJ file reading procedure in Open Design Alliance Drawings SDK prior to 2022.11. The lack of validating the input length can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execu...
Opendesign Drawings Software Developemnt Kit
6.8
CVSSv2
CVE-2021-32936
An out-of-bounds write issue exists in the DXF file-recovering procedure in the Drawings SDK (All versions before 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow malicious users t...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
5.8
CVSSv2
CVE-2021-32938
Drawings SDK (All versions before 2022.4) are vulnerable to an out-of-bounds read due to parsing of DWG files resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allows malicious users to cause a de...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
5.8
CVSSv2
CVE-2021-32940
An out-of-bounds read issue exists in the DWG file-recovering procedure in the Drawings SDK (All versions before 2022.5) resulting from the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated buffer and allow malicious users to ...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
6.8
CVSSv2
CVE-2021-32944
A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions before 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a memory corruption or arbitrary code execution, allowing malicious users to cau...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
6.8
CVSSv2
CVE-2021-32952
An out-of-bounds write issue exists in the DGN file-reading procedure in the Drawings SDK (Version 2022.4 and prior) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow malicious users to cau...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
6.8
CVSSv2
CVE-2021-32948
An out-of-bounds write issue exists in the DWG file-reading procedure in the Drawings SDK (All versions before 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a write past the end of an allocated buffer and allow malicious users to c...
Opendesign Drawings Sdk
Siemens Teamcenter Visualization
Siemens Jt2go
Siemens Comos
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »