Lucene search
K

48 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:55 a.m.7 views

CVE-2022-23095

Open Design Alliance Drawings SDK before 2022.12.1 mishandles the loading of JPG files. Unchecked input data from a crafted JPG file leads to memory corruption. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7AI score0.01127EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-30903

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00814EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:29 a.m.8 views

CVE-2023-26495

An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code...

7.8CVSS7.3AI score0.0044EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:43 p.m.4 views

CVE-2022-28809

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading a DWG file with an invalid vertex number in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7AI score0.00374EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:52 p.m.7 views

CVE-2021-43582

A Use-After-Free Remote Vulnerability exists when reading a DWG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DWG files. The issue results from the lack of validating the existence of an object prior to performing operations on the...

7.8CVSS7AI score0.01339EPSS
Exploits0
NVD
NVD
added 2024/12/04 12:15 p.m.21 views

CVE-2024-8894

Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a...

8.1CVSS0.00192EPSS
Exploits0References1
CVE
CVE
added 2024/12/04 11:40 a.m.50 views

CVE-2024-8894

Open Design Alliance Drawings SDK (pre-2025.10) is affected by an out-of-bounds write when reading crafted DWF files due to missing checks on SectionIterator data. This can trigger an unhandled exception, potentially causing a crash and denial-of-service, with possible code execution. Affected ve...

8.1CVSS7AI score0.00192EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/04 11:40 a.m.10 views

CVE-2024-8894 Out-of-bounds Write vulnerability in ODA SDK versions < 2025.10

Out-of-bounds Write vulnerability was discovered in Open Design Alliance Drawings SDK before 2025.10. Reading crafted DWF file and missing proper checks on received SectionIterator data can trigger an unhandled exception. This can allow attackers to cause a crash, potentially enabling a...

8.1CVSS7.5AI score0.00192EPSS
Exploits0References1
Prion
Prion
added 2023/04/10 8:15 p.m.28 views

Design/Logic Flaw

An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code...

4.4CVSS7.9AI score0.0044EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/10 12:0 a.m.8 views

CVE-2023-26495

An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code...

7.9AI score0.0044EPSS
Exploits0References1
Prion
Prion
added 2022/07/17 11:15 p.m.21 views

Out-of-bounds

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

4.4CVSS7.8AI score0.00394EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/01/15 3:17 p.m.12 views

Memory corruption

Open Design Alliance Drawings SDK before 2022.12.1 mishandles the loading of JPG files. Unchecked input data from a crafted JPG file leads to memory corruption. An attacker can leverage this vulnerability to execute code in the context of the current process...

6.8CVSS7.7AI score0.01127EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2021/12/21 7:15 p.m.24 views

CVE-2021-44860

An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TIF files. An unchecked input data from a crafted TIF file leads to an out-of-bounds read. An attacker can leverage this vulnerability...

7.8CVSS0.00817EPSS
Exploits0References1
NVD
NVD
added 2021/12/21 7:15 p.m.27 views

CVE-2021-44422

An Improper Input Validation Vulnerability exists when reading a BMP file using Open Design Alliance Drawings SDK before 2022.12. Crafted data in a BMP file can trigger a write operation past the end of an allocated buffer, or lead to a heap-based buffer overflow. An attacker can leverage this...

7.8CVSS0.00869EPSS
Exploits0References1
Prion
Prion
added 2021/12/21 7:15 p.m.16 views

Out-of-bounds

An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TIF files. An unchecked input data from a crafted TIF file leads to an out-of-bounds read. An attacker can leverage this vulnerability...

6.8CVSS7.5AI score0.00817EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/12/21 7:15 p.m.18 views

Out-of-bounds

An out-of-bounds read vulnerability exists when reading a TGA file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TGA files. An unchecked input data from a crafted TGA file leads to an out-of-bounds read. An attacker can leverage this vulnerability...

6.8CVSS7.5AI score0.00817EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/21 6:26 p.m.21 views

CVE-2021-44859

An out-of-bounds read vulnerability exists when reading a TGA file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TGA files. An unchecked input data from a crafted TGA file leads to an out-of-bounds read. An attacker can leverage this vulnerability...

7.7AI score0.00817EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/12/21 6:26 p.m.23 views

CVE-2021-44860

An out-of-bounds read vulnerability exists when reading a TIF file using Open Design Alliance Drawings SDK before 2022.12. The specific issue exists after loading TIF files. An unchecked input data from a crafted TIF file leads to an out-of-bounds read. An attacker can leverage this vulnerability...

7.7AI score0.00817EPSS
Exploits0References1
CVE
CVE
added 2021/12/21 6:26 p.m.51 views

CVE-2021-44860

CVE-2021-44860 describes an out-of-bounds read in the Open Design Alliance Drawings SDK when parsing TIF files loaded after startup. The vulnerability stems from unchecked input data in crafted TIFs, allowing an attacker to execute code in the context of the current process. Affected component: O...

7.8CVSS7.5AI score0.00817EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/12/21 6:25 p.m.53 views

CVE-2021-44422

CVE-2021-44422 concerns Open Design Alliance Drawings SDK/Drawings Explorer. The vulnerability arises from improper input validation during BMP parsing: lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. This can trigger a write past the end ...

7.8CVSS7.8AI score0.00869EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder