Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-89166
HistoryNov 16, 2021 - 12:00 a.m.

Open Design Alliance Drawings SDK has an unspecified vulnerability (CNVD-2021-89166)

2021-11-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
open design alliance
sdk
vulnerability
dgn files
code execution
data validation
security issue

EPSS

0.001

Percentile

44.0%

JSON

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The package provides access to data in .dwg and .dgn through a convenient, object-oriented API that provides a C API, support for repair files, support for the . An “out - bounds Write” vulnerability exists when reading DGN files. The problem exists in the parsing of DGN files. The lack of proper validation of crafted and input data in a DGN file could trigger a write operation beyond the end of the allocated buffer. An attacker could exploit this vulnerability to execute code in the context of the current process.

Related

zdi 3
cvelist 1
prion 1
cve 1
nvd 1
zdi
zdi
Open Design Alliance (ODA) ODAViewer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-11-30 00:00:00
Open Design Alliance (ODA) ODAViewer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-11-29 00:00:00
Open Design Alliance (ODA) Drawings Explorer DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2021-11-29 00:00:00
cvelist
cvelist
CVE-2021-43390
2021-11-14 20:56:44
prion
prion
Cross site scripting
2021-11-14 21:15:00
cve
cve
CVE-2021-43390
2021-11-14 21:15:08
nvd
nvd
CVE-2021-43390
2021-11-14 21:15:08

EPSS

0.001

Percentile

44.0%

JSON
Related for CNVD-2021-89166
zdi3cvelist1prion1cve1nvd1