Lucene search

[email protected]CVE-2015-2946

HistoryMay 25, 2015 - 7:59 p.m.

CVE-2015-2946

2015-05-2519:59:03

CWE-119

[email protected]

web.nvd.nist.gov

cve-2015-2946

stack-based buffer overflow

open cad format council

sxf common library

remote code execution

nvd

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.2 High

AI Score

Confidence

High

0.064 Low

EPSS

Percentile

93.7%

JSON

Stack-based buffer overflow in the Open CAD Format Council SXF common library before 3.30 allows remote attackers to execute arbitrary code via a crafted CAD file.

Affected configurations

NVD

Node

ocfsxf_common_libraryRange≤3.21

CPENameOperatorVersion
ocf:sxf_common_libraryocf sxf common libraryle3.21

CPE	Name	Operator	Version
ocf:sxf_common_library	ocf sxf common library	le	3.21

References

jvn.jp/en/jp/JVN93976566/995630/index.html

jvn.jp/en/jp/JVN93976566/index.html

jvndb.jvn.jp/jvndb/JVNDB-2015-000068

www.ocf.or.jp/top/topix/027.shtml

www.securityfocus.com/bid/74781

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

8.2 High

AI Score

Confidence

High

0.064 Low

EPSS

Percentile

93.7%

JSON

Related for CVE-2015-2946

prion1 nvd1 cvelist1 jvn1