Lucene search
IcscertCVELIST:CVE-2021-32944HistoryJun 17, 2021 - 12:50 p.m.
CVE-2021-32944
2021-06-1712:50:37
CWE-416
icscert
www.cve.org
5
drawings sdk
dgn file-reading
use-after-free
memory corruption
arbitrary code execution
denial-of-service
validation of user-supplied data
cve-2021-32944
EPSS
0.001
Percentile
50.8%
A use-after-free issue exists in the DGN file-reading procedure in the Drawings SDK (All versions prior to 2022.4) resulting from the lack of proper validation of user-supplied data. This can result in a memory corruption or arbitrary code execution, allowing attackers to cause a denial-of-service condition or execute code in the context of the current process.
CNA Affected
[
{
"product": "Drawings SDK",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions prior to 2022.4"
}
]
}
]Related
zdi
zdi
prion
prion
Memory corruption
2021-06-17 13:15:00
cve
cve
CVE-2021-32944
2021-06-17 13:15:08
nvd
nvd
CVE-2021-32944
2021-06-17 13:15:08
nessus
nessus
Siemens JT2Go < 13.2.0.1 Multiple Vulnerabilities (SSA-365397)
2021-08-12 00:00:00
ics
ics
Siemens JT2Go and Teamcenter Visualization products
2021-08-10 12:00:00
Open Design Alliance Drawings SDK
2021-06-08 12:00:00
Siemens COMOS
2022-03-10 12:00:00