Lucene search
K

22 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.8 views

CVE-2021-27040

A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code...

4.3CVSS7.2AI score0.02743EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-27341

Malware in sbrugna...

7.8CVSS7.7AI score0.00988EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-7197

Malware in sbrugna...

7.8CVSS7.7AI score0.01173EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.22 views

EUVD-2021-19659

Malware in sbrugna...

7.1CVSS6.7AI score0.01443EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-22238

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00205EPSS
Exploits0References1
NVD
NVD
added 2025/07/21 8:15 p.m.5 views

CVE-2025-7251

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

7.8CVSS0.0022EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/21 8:3 p.m.7 views

CVE-2025-7299 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

7.8CVSS0.00225EPSS
Exploits0References1
CVE
CVE
added 2025/07/21 8:2 p.m.32 views

CVE-2025-7314

CVE-2025-7314 affects IrfanView CADImage Plugin and relates to memory corruption during DWG file parsing due to insufficient input validation. The vulnerability permits remote code execution with user interaction required (target must open a malicious DWG or visit a malicious page). Root cause is...

7.8CVSS8.1AI score0.00225EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/21 8:1 p.m.12 views

CVE-2025-7303 IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

7.8CVSS0.00225EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.7 views

The vulnerability of the CADImage plugin in the IrfanView software, which is used for viewing and playing graphic, video, and audio files, allows a hacker to execute arbitrary code.

The vulnerability of the CADImage plugin in IrfanView, a program for viewing and playing graphic, video, and audio files, relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially...

7.8CVSS8AI score0.0022EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2025/07/08 12:0 a.m.12 views

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.7AI score0.00225EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2025/07/08 12:0 a.m.5 views

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.0022EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2025/07/08 12:0 a.m.5 views

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.00221EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:10 p.m.10 views

CVE-2021-27042

A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. The vulnerability exists because the application fails to handle a crafted DWG file, which causes an unhandled exception. An attacker can leverage this vulnerability to execute arbitrary code...

7.8CVSS7.5AI score0.01797EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/17 9:3 p.m.7 views

CVE-2025-2497

A maliciously crafted DWG file, when parsed through Autodesk Revit, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS7.7AI score0.00296EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 8:55 p.m.68 views

CVE-2025-2497

CVE-2025-2497 relates to Autodesk Revit parsing a malicious DWG file, causing a Stack-Based Buffer Overflow and enabling arbitrary code execution in the context of the current process. Affected product: Autodesk Revit (DWG parsing functionality). Root cause: stack-based overflow triggered during ...

7.8CVSS7.9AI score0.00296EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.4 views

PT-2025-16479 · Autodesk · Autodesk

Name of the Vulnerable Software and Affected Versions: Autodesk applications affected versions not specified Description: A maliciously crafted DWG file can cause an Out-of-Bounds Write issue when parsed through certain Autodesk applications. This can be leveraged by a malicious actor to cause a...

7.8CVSS7AI score0.00265EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/02/11 12:0 a.m.5 views

PT-2025-28673 · Irfanview · Irfanview +1

Name of the Vulnerable Software and Affected Versions: IrfanView CADImage Plugin affected versions not specified Description: The IrfanView CADImage plugin contains a memory corruption flaw related to parsing DWG files. Successful exploitation of this issue could allow an attacker to execute...

7.8CVSS7.9AI score0.0022EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/02/05 11:57 a.m.22 views

CVE-2024-7992

A maliciously crafted DWG file, when parsed through Autodesk AutoCAD and certain AutoCAD-based products, can force a Stack-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current proces...

7.8CVSS7.3AI score0.00213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:30 a.m.8 views

CVE-2024-23138

A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Stack-based Overflow. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

7.8CVSS7.3AI score0.0047EPSS
Exploits0References1
Rows per page
Query Builder