Lucene search
K

165 matches found

BDU FSTEC
BDU FSTEC
added 2022/08/01 12:0 a.m.8 views

The vulnerability in the implementation of the recovery mode for the software development tools for engineering applications, such as the Drawing SDK, JT, JT2Go, and the Teamcenter Visualization lifecycle management system, allows a perpetrator to execute arbitrary code or cause service failures.

The vulnerability of the recovery mode implementation in the software development tools for engineering applications, such as Drawings SDK, JT, JT2Go, and Teamcenter Visualization’s product lifecycle management system, is related to reading data beyond the buffer in memory during the processing o...

7.8CVSS7.8AI score0.00394EPSS
Exploits0References5Affected Software4
NVD
NVD
added 2022/07/17 11:15 p.m.16 views

CVE-2022-28808

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS0.00394EPSS
Exploits0References1
OSV
OSV
added 2022/07/17 11:15 p.m.1 views

CVE-2022-28807

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS6AI score0.00394EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/07/17 11:15 p.m.2 views

CVE-2022-28807

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7.3AI score0.00394EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/17 11:15 p.m.1 views

CVE-2022-28809

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading a DWG file with an invalid vertex number in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7.3AI score0.00374EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/17 11:15 p.m.2 views

CVE-2022-28808

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS7.3AI score0.00394EPSS
Exploits0References2
OSV
OSV
added 2022/07/17 11:15 p.m.0 views

CVE-2022-28809

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading a DWG file with an invalid vertex number in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS6AI score0.00374EPSS
Exploits0References1
NVD
NVD
added 2022/07/17 11:15 p.m.20 views

CVE-2022-28807

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS0.00394EPSS
Exploits0References1
OSV
OSV
added 2022/07/17 11:15 p.m.4 views

CVE-2022-28808

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS6AI score0.00394EPSS
Exploits0References1
Prion
Prion
added 2022/07/17 11:15 p.m.22 views

Out-of-bounds

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

4.4CVSS7.8AI score0.00394EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/07/17 11:15 p.m.17 views

Out-of-bounds

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

4.4CVSS7.8AI score0.00394EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/07/17 10:21 p.m.28 views

CVE-2022-28809

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading a DWG file with an invalid vertex number in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8AI score0.00374EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/07/17 10:19 p.m.24 views

CVE-2022-28808

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8AI score0.00394EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/07/17 10:18 p.m.25 views

CVE-2022-28807

An issue was discovered in Open Design Alliance Drawings SDK before 2023.2. An Out-of-Bounds Read vulnerability exists when rendering a .dwg file after it's opened in the recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8AI score0.00394EPSS
Exploits0References1
OSV
OSV
added 2022/05/24 7:2 p.m.48 views

GHSA-286V-PCF5-25RC Nokogiri Implements libxml2 version vulnerable to null pointer dereferencing

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS7.1AI score0.03503EPSS
Exploits0References14
Github Security Blog
Github Security Blog
added 2022/05/24 7:2 p.m.39 views

Nokogiri Implements libxml2 version vulnerable to null pointer dereferencing

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could be used to crash the application. The highest...

5.9CVSS6.7AI score0.03503EPSS
Exploits0References14Affected Software1
RedHat Linux
RedHat Linux
added 2022/04/20 7:44 p.m.7 views

libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

A NULL pointer dereference flaw was found in libxml2, where it did not propagate errors while parsing XML mixed content. This flaw causes the application to crash if an untrusted XML document is parsed in recovery mode and post validated. The highest threat from this vulnerability is to system...

5.9CVSS7.1AI score0.03503EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/04/20 7:30 p.m.8 views

libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

A NULL pointer dereference flaw was found in libxml2, where it did not propagate errors while parsing XML mixed content. This flaw causes the application to crash if an untrusted XML document is parsed in recovery mode and post validated. The highest threat from this vulnerability is to system...

5.9CVSS7.1AI score0.03503EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/08 12:0 a.m.4 views

PT-2022-3903 · Open Design Alliance · Open Design Alliance Drawings Sdk

Name of the Vulnerable Software and Affected Versions: Open Design Alliance Drawings SDK versions prior to 2023.3 Description: An issue exists when reading a DWG file with an invalid vertex number in recovery mode, leading to an Out-of-Bounds Read. This can allow an attacker to execute code in th...

7.8CVSS7.6AI score0.00374EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/03/10 5:43 p.m.4 views

CVE-2021-40055

There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity...

7.1CVSS5.7AI score0.00506EPSS
Exploits0References3Affected Software3
Rows per page
Query Builder