CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

65 matches found

EUVD•added 2026/05/01 12:0 a.m.•2 views

EUVD-2026-26600

A heap-based out-of-bounds read vulnerability in RWObjReader::read in the OBJ file parser in Open CASCADE Technology OCCT V800rc5 allows user-assisted attackers to cause a denial of service or obtain sensitive information by persuading a victim to open a crafted OBJ file. The issue occurs because...

7.1CVSS5.9AI score0.00104EPSS

Exploits0References1

EUVD•added 2026/05/01 12:0 a.m.•5 views

EUVD-2026-26599

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.8AI score0.00106EPSS

Exploits0References1

EUVD•added 2026/05/01 12:0 a.m.•4 views

EUVD-2026-26677

A stack-based out-of-bounds read vulnerability in VrmlDataScene::ReadLine in the VRML parser in Open CASCADE Technology OCCT V800rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because the quoted-string escape handler uses ptr++anOffset without proper...

5.5CVSS5.9AI score0.00098EPSS

Exploits0References1

Vulnrichment•added 2026/05/01 12:0 a.m.•3 views

CVE-2026-42481

Open CASCADE Technology OCCT V800rc5 contains multiple vulnerabilities in its IGES and STEP file parsers that can be triggered by crafted IGES or STEP files. These issues include an out-of-bounds read in Geom2dBSplineCurve::EvalD0 during IGES B-spline curve evaluation, an out-of-bounds read in...

5.8AI score0.00098EPSS

Exploits0References1

Vulnrichment•added 2026/05/01 12:0 a.m.•0 views

CVE-2026-42480

5.9AI score0.00098EPSS

Exploits0References1

Vulnrichment•added 2026/05/01 12:0 a.m.•2 views

CVE-2026-42479

An out-of-bounds read vulnerability in VrmlDataIndexedLineSet::TShape in the VRML parser in Open CASCADE Technology OCCT V800rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because coordIndex values from parsed input are used as direct array indices...

5.8AI score0.00099EPSS

Exploits0References1

Vulnrichment•added 2026/05/01 12:0 a.m.•1 views

CVE-2026-42476

5.8AI score0.00106EPSS

Exploits0References1

Vulnrichment•added 2026/05/01 12:0 a.m.•2 views

CVE-2026-42477

5.9AI score0.00104EPSS

Exploits0References1

Vulnrichment•added 2026/05/01 12:0 a.m.•1 views

CVE-2026-42478

An issue was discovered in VrmlDataIndexedFaceSet::TShape in the VRML V2.0 parser in Open CASCADE Technology OCCT V800rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because malformed VRML input can trigger dereference of a corrupt or unvalidated pointe...

5.8AI score0.00219EPSS

Exploits0References1

Positive Technologies•added 2026/05/01 12:0 a.m.•6 views

PT-2026-36477

An issue was discovered in VrmlData IndexedFaceSet::TShape in the VRML V2.0 parser in Open CASCADE Technology OCCT V8 0 0 rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because malformed VRML input can trigger dereference of a corrupt or unvalidated...

7.5CVSS5.8AI score0.00219EPSS

Exploits0References2

Positive Technologies•added 2026/05/01 12:0 a.m.•5 views

PT-2026-36475

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V8 0 0 rc5 exist in RWStl Reader::ReadAscii because buffers returned by Standard ReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.8AI score0.00106EPSS

Exploits0References2

Positive Technologies•added 2026/05/01 12:0 a.m.•4 views

PT-2026-36476

A heap-based out-of-bounds read vulnerability in RWObj Reader::read in the OBJ file parser in Open CASCADE Technology OCCT V8 0 0 rc5 allows user-assisted attackers to cause a denial of service or obtain sensitive information by persuading a victim to open a crafted OBJ file. The issue occurs...

7.1CVSS5.9AI score0.00104EPSS

Exploits0References2

Positive Technologies•added 2026/05/01 12:0 a.m.•7 views

PT-2026-36493

Name of the Vulnerable Software and Affected Versions Open CASCADE Technology OCCT version V8 0 0 rc5 Description A stack-based out-of-bounds read in the VRML parser occurs within the VrmlData Scene::ReadLine function. The quoted-string escape handler utilizes ptr++anOffset without adequate bound...

5.5CVSS5.9AI score0.00098EPSS

Exploits0References6

Positive Technologies•added 2026/05/01 12:0 a.m.•2 views

PT-2026-36478

An out-of-bounds read vulnerability in VrmlData IndexedLineSet::TShape in the VRML parser in Open CASCADE Technology OCCT V8 0 0 rc5 allows attackers to cause a denial of service via a crafted VRML file. The issue occurs because coordIndex values from parsed input are used as direct array indices...

5.5CVSS5.8AI score0.00099EPSS

Exploits0References2

EUVD•added 2026/05/01 12:0 a.m.•3 views

EUVD-2026-26601

7.5CVSS5.8AI score0.00219EPSS

Exploits0References1

CVE•added 2026/05/01 12:0 a.m.•7 views

CVE-2026-42481

The CVE-2026-42481 entry concerns Open CASCADE Technology (OCCT) in the V8_0_0_rc5 release. The affected components are the IGES and STEP file parsers. Documented issues include an out-of-bounds read in Geom2d_BSplineCurve::EvalD0 during IGES B-spline curve evaluation, another out-of-bounds read ...

5.5CVSS5.8AI score0.00098EPSS

Exploits0References1Affected Software1

CNNVD•added 2026/05/01 12:0 a.m.•11 views

Open Cascade OCCT 缓冲区错误漏洞

Open Cascade OCCT is a 3D modeling and geometry computation kernel from the French company Open Cascade. A buffer error vulnerability exists in Open Cascade OCCT version V800rc5, which stems from an out-of-bounds read issue in the VrmlDataIndexedLineSet::TShape function in the VRML parser, as the...

5.5CVSS5.9AI score0.00099EPSS

Exploits0References1