Lucene search
K

15 matches found

ICS
ICS
added 2023/12/19 7:0 a.m.50 views

Open Design Alliance Drawing SDK

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Open Design Alliance ODA Equipment : Drawing SDK Vulnerabilities : Use after Free, Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of this vulnerability could allow remote attackers to...

7.8CVSS8.5AI score0.0044EPSS
Exploits0References10
Zero Day Initiative
Zero Day Initiative
added 2023/02/24 12:0 a.m.33 views

Open Design Alliance (ODA) Drawing SDK DGN File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.6AI score0.00814EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.22 views

Open Design Alliance (ODA) Drawing SDK DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

3.3CVSS3.7AI score0.0205EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.28 views

Open Design Alliance (ODA) Drawing SDK DWG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS7.7AI score0.00315EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.25 views

Open Design Alliance (ODA) Drawing SDK DGN File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS6.3AI score0.02801EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.22 views

Open Design Alliance (ODA) Drawing SDK DGN File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.2AI score0.02668EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.28 views

Open Design Alliance (ODA) Drawing SDK DWG File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.2AI score0.01641EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.25 views

Open Design Alliance (ODA) Drawing SDK DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.6AI score0.01641EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.40 views

Open Design Alliance (ODA) Drawing SDK DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.6AI score0.01627EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.30 views

Open Design Alliance (ODA) Drawing SDK DXF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS7.7AI score0.00216EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.24 views

Open Design Alliance (ODA) Drawing SDK DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

3.3CVSS3.7AI score0.01339EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.30 views

Open Design Alliance (ODA) Drawing SDK DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.5AI score0.01443EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.33 views

Open Design Alliance (ODA) Drawing SDK DGN File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS5.2AI score0.02668EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/02/09 12:0 a.m.27 views

Open Design Alliance (ODA) Drawing SDK DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Open Design Alliance ODA Drawing SDK. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

3.3CVSS3.7AI score0.01443EPSS
Exploits0References1
OSV
OSV
added 2022/07/17 11:15 p.m.4 views

CVE-2022-28808

An issue was discovered in Open Design Alliance Drawings SDK before 2023.3. An Out-of-Bounds Read vulnerability exists when reading DWG files in a recovery mode. An attacker can leverage this vulnerability to execute code in the context of the current process...

7.8CVSS6AI score0.00394EPSS
Exploits0References1
Rows per page
Query Builder