Lucene search
K

379 matches found

NVD
NVD
added 2023/11/07 4:15 p.m.16 views

CVE-2023-5179

An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack Crash, Exit, or Restart o...

7.8CVSS0.00273EPSS
Exploits0References1
Prion
Prion
added 2023/11/07 4:15 p.m.22 views

Design/Logic Flaw

An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack Crash, Exit, or Restart o...

4.4CVSS7.5AI score0.00273EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/11/07 3:16 p.m.17 views

CVE-2023-5179

An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack Crash, Exit, or Restart o...

7.8CVSS7.3AI score0.00273EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/07 3:16 p.m.19 views

CVE-2023-5179

An issue was discovered in Open Design Alliance Drawings SDK before 2024.10. A corrupted value for the start of MiniFat sector in a crafted DGN file leads to an out-of-bounds read. This can allow attackers to cause a crash, potentially enabling a denial-of-service attack Crash, Exit, or Restart o...

7.8CVSS7.9AI score0.00273EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/11/07 12:0 a.m.7 views

Open Design Alliance Drawings SDK Buffer Error Vulnerability

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, USA. The development kit accesses data in .dwg and .dgn through a convenient, object-oriented API, providing features such as a C++ API, support for repairing files, and .NET...

7.8CVSS7.6AI score0.00273EPSS
Exploits0References3
NVD
NVD
added 2023/03/29 7:15 p.m.28 views

CVE-2022-28643

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00938EPSS
Exploits0References2
OSV
OSV
added 2023/03/29 7:15 p.m.1 views

CVE-2022-28643

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS6.2AI score0.00938EPSS
Exploits0References2
NVD
NVD
added 2023/03/29 7:15 p.m.26 views

CVE-2022-28644

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00938EPSS
Exploits0References2
OSV
OSV
added 2023/03/29 7:15 p.m.2 views

CVE-2022-28642

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS6.2AI score0.00938EPSS
Exploits0References2
NVD
NVD
added 2023/03/29 7:15 p.m.23 views

CVE-2022-28645

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

5.5CVSS4AI score0.00613EPSS
Exploits0References2
NVD
NVD
added 2023/03/29 7:15 p.m.43 views

CVE-2022-28642

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00938EPSS
Exploits0References2
OSV
OSV
added 2023/03/29 7:15 p.m.3 views

CVE-2022-28645

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

5.5CVSS4.9AI score0.00613EPSS
Exploits0References2
OSV
OSV
added 2023/03/29 7:15 p.m.4 views

CVE-2022-28644

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS6.2AI score0.00938EPSS
Exploits0References2
Prion
Prion
added 2023/03/29 7:15 p.m.16 views

Design/Logic Flaw

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

1.9CVSS5.2AI score0.00613EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/03/29 7:15 p.m.17 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.4CVSS7.8AI score0.00938EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/03/29 7:15 p.m.21 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.4CVSS7.8AI score0.00938EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/03/29 7:15 p.m.23 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.4CVSS7.8AI score0.00938EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2023/03/29 12:0 a.m.8 views

CVE-2022-28642

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00938EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/29 12:0 a.m.7 views

CVE-2022-28645

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

3.3CVSS5.2AI score0.00613EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/03/29 12:0 a.m.9 views

CVE-2022-28644

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.34. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00938EPSS
Exploits0References2
Rows per page
Query Builder