Published: 25/01/2022 Updated: 07/11/2023

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

A buffer overflow vulnerability in CDataMoji of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an malicious user to achieve Remote Code Execution using a crafted JWW document.

Vulnerable Product	Search on Vulmon	Subscribe to Product
librecad librecad 2.2.0
librecad librecad
fedoraproject fedora 34
fedoraproject fedora 35
debian debian linux 10.0
debian debian linux 11.0

Debian Bug report logs - #1004518 librecad: CVE-2021-45341 CVE-2021-45342 CVE-2021-45343 Package: src:librecad; Maintainer for src:librecad is Debian Science Maintainers <debian-science-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 29 Jan 2022 19:33:01 UTC Seve ...

Multiple security issues were discovered in LibreCAD, an application for computer aided design (CAD) which could result in denial of service or the execution of arbitrary code if a malformed CAD file is opened For the oldstable distribution (buster), these problems have been fixed in version 213-12+deb10u1 For the stable distribution (bullseye ...

CWE-120 https://github.com/LibreCAD/LibreCAD/issues/1462 https://www.debian.org/security/2022/dsa-5077 https://security.gentoo.org/glsa/202305-26 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VUMH3CWGVSMR2UIZEA35Q5UB7PDVVVYS/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FCC2FZ6HZOIK3775K4MTCOUHX6PLGPEL/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1004518 https://nvd.nist.gov https://www.debian.org/security/2022/dsa-5077

CVE-2021-45341

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect