Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libredwg vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-28237
LibreDWG v0.12.3 exists to contain a heap-buffer overflow via decode_preR13.
Gnu Libredwg 0.12.3
5.5
CVSSv3
CVE-2020-23861
A heap-based buffer overflow vulnerability exists in LibreDWG 0.10.1 via the read_system_page function at libredwg-0.10.1/src/decode_r2007.c:666:5, which causes a denial of service by submitting a dwg file.
Gnu Libredwg 0.10.1
7.8
CVSSv3
CVE-2022-45332
LibreDWG v0.12.4.4643 exists to contain a heap buffer overflow via the function decode_preR13_section_hdr at decode_r11.c.
Gnu Libredwg 0.12.4.4643
6.5
CVSSv3
CVE-2019-20009
An issue exists in GNU LibreDWG prior to 0.93. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_SPLINE_private in dwg.spec.
Gnu Libredwg
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-20013
An issue exists in GNU LibreDWG prior to 0.93. Crafted input will lead to an attempted excessive memory allocation in decode_3dsolid in dwg.spec.
Gnu Libredwg
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
8.8
CVSSv3
CVE-2019-20014
An issue exists in GNU LibreDWG prior to 0.93. There is a double-free in dwg_free in free.c.
Gnu Libredwg
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
8.8
CVSSv3
CVE-2019-20010
An issue exists in GNU LibreDWG 0.92. There is a use-after-free in resolve_objectref_vector in decode.c.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
8.8
CVSSv3
CVE-2019-20011
An issue exists in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-20012
An issue exists in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_HATCH_private in dwg.spec.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.5
CVSSv3
CVE-2019-20015
An issue exists in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
NEXT »