PT-2023-21267 · Dassault Systèmes · Solidworks

Name of the Vulnerable Software and Affected Versions: SOLIDWORKS Desktop versions Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023 Description: The issue exists in the DWG and DXF file reading procedure, allowing an attacker to execute arbitrary code while opening a specially crafted file...

Open Design Alliance (ODA) Drawings Explorer 缓冲区错误漏洞

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The SDK provides access to data in .dwg and .dgn through a convenient, object-oriented API, providing a C API, support for repair files, support for the . The...

Open Design Alliance Drawings SDK 缓冲区错误漏洞

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The package provides access to data in .dwg and .dgn through a convenient, object-oriented API, C API, support for repair files, support for . The vulnerability can be...

CVE-2021-43336

An Out-of-Bounds Write vulnerability exists when reading a DXF or DWG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DXF and DWG files. Crafted data in a DXF or DWG file an invalid number of properties can trigger a write operation pas...

Command Execution Vulnerability in the Standard Edition of Xunjie CAD Editor

Xunjie CAD Editor Standard Edition is an application for drawing DWG format file editing software, mainly for DWG, DXF and other file formats drawings to provide browsing, editing functions. A command execution vulnerability exists in XunJie CAD Editor Standard Edition, which can be exploited by ...