3 matches found
Open Design Alliance Drawings SDK (Update A)
1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Open Design Alliance Equipment: Drawings SDK --------- Begin Update A Part 1 of 3 --------- Vulnerabilities: Stack-based Buffer Overflow, Type Confusion, Untrusted Pointer Dereference, Incorrect Type Conversion or Cast,...
CVE-2021-25178
An issue was discovered in Open Design Alliance Drawings SDK before 2021.11. A stack-based buffer overflow vulnerability exists when the recover operation is run with malformed .DXF and .DWG files. This can allow attackers to cause a crash potentially enabling a denial of service attack Crash,...
CVE-2021-25178
Open Design Alliance Drawings SDK (pre-2021.12) contains a stack-based buffer overflow when parsing DXF/DWG files, CVE-2021-25178. This vulnerability could allow code execution or crash/DoS in affected deployments. Connected advisories (ICS/CISA) specify the affected Drawings SDK versions and ide...