Lucene search
K

16 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:55 a.m.6 views

SUSE CVE-2020-21827

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2379...

7.8CVSS7.9AI score0.00887EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.6 views

SUSE CVE-2020-21833

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read2004sectionclasses ../../src/decode.c:2440...

8.8CVSS8.9AI score0.01124EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.4 views

SUSE CVE-2020-21840

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitsearchsentinel ../../src/bits.c:1985...

8.8CVSS8.9AI score0.01064EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:54 a.m.5 views

SUSE CVE-2020-21841

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitreadB ../../src/bits.c:135...

8.8CVSS8.9AI score0.01064EPSS
Exploits1References3
NVD
NVD
added 2021/05/17 10:15 p.m.18 views

CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

8.8CVSS0.01512EPSS
Exploits1References1
Prion
Prion
added 2021/05/17 10:15 p.m.24 views

Heap overflow

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitreadRC ../../src/bits.c:318...

6.8CVSS8.8AI score0.01124EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2021/05/17 9:15 p.m.19 views

CVE-2020-21833

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read2004sectionclasses ../../src/decode.c:2440...

8.8CVSS0.01124EPSS
Exploits1References1
Prion
Prion
added 2021/05/17 9:15 p.m.17 views

Heap overflow

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2417...

6.8CVSS8.8AI score0.01124EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2021/05/17 9:15 p.m.23 views

Null pointer dereference

A null pointer deference issue exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2337...

4.3CVSS6.4AI score0.00856EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/05/17 9:8 p.m.82 views

CVE-2020-21831

The CVE refers to a heap-based buffer overflow in GNU LibreDWG 0.10 triggered by read_2004_section_handles (src/decode.c:2637). Affected component is the LibreDWG library used for reading DWG files. Based on CVSS data, the vulnerability is exploitable remotely with network access, and the impact ...

8.8CVSS8.8AI score0.01064EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/05/17 8:59 p.m.68 views

CVE-2020-21841

CVE-2020-21841 affects GNU LibreDWG 0.10. The vulnerability is a heap-based buffer overflow triggered by a flaw in bit_read_B in ../../src/bits.c:135. Multiple connected records (Red Hat, SUSE, CNVD, NVD, NVD-derived feeds, and others) confirm the same issue across sources, indicating a consisten...

8.8CVSS8.8AI score0.01064EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/17 8:58 p.m.26 views

CVE-2020-21840

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitsearchsentinel ../../src/bits.c:1985...

8.9AI score0.01064EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/05/17 8:28 p.m.24 views

CVE-2020-21835

A null pointer deference issue exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2337...

6.5AI score0.00856EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.4 views

GNU LibreDWG 缓冲区错误漏洞

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability by reading2004sectionrevhistory ... /... /src/decode.c:3051 to exploit the vulnerability and cause a heap buffer...

8.8CVSS6.2AI score0.01124EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2021/05/17 12:0 a.m.4 views

PT-2021-10684

Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.10 Description: An issue in GNU LibreDWG leads to a memory leak when crafted input is processed by the dwg decode eed function in the decode.c file. Recommendations: For GNU LibreDWG version 0.10, at the moment, there i...

6.5CVSS6.5AI score0.00913EPSS
Exploits1References6
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.4 views

GNU LibreDWG 代码问题漏洞

LibreDWG is a free C library for reading and writing DWG files. A null pointer dereference vulnerability exists in GNU LibreDWG version 0.10. An attacker can read2004compressedsection ... /... /src/decode.c:2337 to exploit the vulnerability and cause a denial of service...

6.5CVSS5.7AI score0.00856EPSS
Exploits1References3
Rows per page
Query Builder