19 matches found
CVE-2025-5046 DGN File Parsing Out-of-Bounds Read Vulnerability
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
CVE-2025-5046 DGN File Parsing Out-of-Bounds Read Vulnerability
A maliciously crafted DGN file, when linked or imported into Autodesk AutoCAD, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
Dassault Systèmes SOLIDWORKS eDrawings 安全漏洞
Dassault Systèmes SOLIDWORKS eDrawings is a collaboration tool for viewing, sharing, and labeling 2D/3D design files from Dassault Systèmes, France. A security vulnerability exists in Dassault Systèmes SOLIDWORKS eDrawings, which originates from the presence of uninitialized variables during the...
CVE-2022-35906
An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Using an affected version of MicroStation or MicroStation-based application to open a DGN file containing crafted data can force an out-of-bounds read. Exploitation of these vulnerabilities within...
Bentley Systems MicroStation 缓冲区错误漏洞
Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.02.34 that stems from a specific flaw in the DGN file parsing process. An attacker could use this...
Bentley Systems MicroStation 缓冲区错误漏洞
Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.02.34 that stems from a specific flaw in the DGN file parsing process. An attacker could exploit t...
PT-2022-19132 · Bentley · Microstation Connect
Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...
Bentley Systems MicroStation 缓冲区错误漏洞
Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.02.34 that stems from a specific flaw in the DGN file parsing process. An attacker could exploit t...
PT-2022-19133 · Bentley · Microstation Connect
Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...
Bentley Systems MicroStation 缓冲区错误漏洞
Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.02.34 that stems from a specific flaw in the DGN file parsing process. An attacker could exploit t...
CVE-2021-46654
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...
CVE-2021-46650
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...
CVE-2021-46643
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
CVE-2021-46640
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
CVE-2021-46641
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View 10.15.0.75. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...
Bentley Systems MicroStation 缓冲区错误漏洞
Bentley MicroStation CONNECT is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, Inc. An out-of-bounds read vulnerability exists in Bentley MicroStation CONNECT 10.16.0.80 when parsing DGN files, which stems from the program does not properly validate user input, an...
Bentley Systems MicroStation 缓冲区错误漏洞
Bentley MicroStation CONNECT, a Cad software platform for 2D and 3D design and drafting from Bentley Systems, Inc. Bentley MicroStation CONNECT 10.16.0.80 contains an out-of-bounds read vulnerability when parsing DGN files, which can be exploited by remote attackers to exploit this vulnerability ...
Bentley Systems Bentley View 缓冲区错误漏洞
Bentley View is a free viewer from Bentley Systems, Inc. A security vulnerability exists in Bentley View caused by an out-of-bounds read when parsing DGN files, which could be exploited by an attacker to obtain sensitive information...
OpenText Brava! 缓冲区错误漏洞
OpenText Brava! Desktop is a Windows-based viewing and collaboration tool that lets you easily view and collaborate on almost any file. An out-of-bounds write vulnerability exists in the parsing of DWF files in OpenText Brava! Desktop. The vulnerability stems from a lack of proper validation of...