Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opendesign drawings sdk vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2021-43278
An Out-of-bounds Read vulnerability exists in the OBJ file reading procedure in Open Design Alliance Drawings SDK prior to 2022.11. The lack of validating the input length can trigger a read past the end of an allocated buffer. An attacker can leverage this vulnerability to execu...
Opendesign Drawings Software Developemnt Kit
605
VMScore
CVE-2021-43390
An Out-of-Bounds Write vulnerability exists when reading a DGN file using Open Design Alliance Drawings SDK prior to 2022.11. The specific issue exists within the parsing of DGN files. Crafted data in a DGN file and lack of proper validation of input data can trigger a write oper...
Opendesign Drawings Software Development Kit
605
VMScore
CVE-2021-43274
A Use After Free Vulnerability exists in the Open Design Alliance Drawings SDK prior to 2022.11. The specific flaw exists within the parsing of DWF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An att...
Opendesign Drawings Software Development Kit
605
VMScore
CVE-2021-43280
A stack-based buffer overflow vulnerability exists in the DWF file reading procedure in Open Design Alliance Drawings SDK prior to 2022.8. The issue results from the lack of proper validation of the length of user-supplied data before copying it to a stack-based buffer. An attack...
Opendesign Drawings Software Development Kit
605
VMScore
CVE-2021-25174
An issue exists in Open Design Alliance Drawings SDK prior to 2021.12. A memory corruption vulnerability exists when reading malformed DGN files. It can allow malicious users to cause a crash, potentially enabling denial of service (Crash, Exit, or Restart).
Opendesign Drawings Software Development Kit
Siemens Comos
Siemens Jt2go
Siemens Teamcenter Visualization
605
VMScore
CVE-2021-25177
An issue exists in Open Design Alliance Drawings SDK prior to 2021.11. A Type Confusion issue exists when rendering malformed .DXF and .DWG files. This can allow malicious users to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart).
Opendesign Drawings Software Development Kit
Siemens Comos
Siemens Jt2go
Siemens Teamcenter Visualization
605
VMScore
CVE-2021-25173
An issue exists in Open Design Alliance Drawings SDK prior to 2021.12. A memory allocation with excessive size vulnerability exists when reading malformed DGN files, which allows malicious users to cause a crash, potentially enabling denial of service (crash, exit, or restart).
Opendesign Drawings Software Development Kit
Siemens Comos
Siemens Jt2go
Siemens Teamcenter Visualization
605
VMScore
CVE-2021-25176
An issue exists in Open Design Alliance Drawings SDK prior to 2021.11. A NULL pointer dereference exists when rendering malformed .DXF and .DWG files. This can allow malicious users to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart).
Opendesign Drawings Software Development Kit
Siemens Comos
Siemens Jt2go
Siemens Teamcenter Visualization
605
VMScore
CVE-2021-25178
An issue exists in Open Design Alliance Drawings SDK prior to 2021.11. A stack-based buffer overflow vulnerability exists when the recover operation is run with malformed .DXF and .DWG files. This can allow malicious users to cause a crash potentially enabling a denial of service...
Opendesign Drawings Software Development Kit
Siemens Comos
Siemens Jt2go
Siemens Teamcenter Visualization
605
VMScore
CVE-2021-25175
An issue exists in Open Design Alliance Drawings SDK prior to 2021.11. A Type Conversion issue exists when rendering malformed .DXF and .DWG files. This can allow malicious users to cause a crash, potentially enabling a denial of service attack (Crash, Exit, or Restart).
Opendesign Drawings Software Development Kit
Siemens Comos
Siemens Jt2go
Siemens Teamcenter Visualization
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »