A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions before 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a memory corruption or arbitrary code execution, allowing malicious users to cause a denial-of-service condition or execute code in the context of the current process.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opendesign drawings sdk |
||
siemens comos |
||
siemens jt2go |
||
siemens teamcenter visualization |