CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2021/05/18 12:0 a.m.•7 views

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2021-36638)

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability by reading2004compressedsection ... /... /src/decode.c:2417 to cause a heap buffer overflow...

8.8CVSS7.2AI score0.01232EPSS

CNVD•added 2021/05/18 12:0 a.m.•8 views

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2021-36639)

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability by reading2004sectionclasses ... /... /src/decode.c:2440 to cause a heap buffer overflow...

8.8CVSS7.2AI score0.01449EPSS

CNVD•added 2021/05/18 12:0 a.m.•5 views

GNU LibreDWG Null Pointer Dereference Vulnerability (CNVD-2021-36640)

LibreDWG is a free C library for reading and writing DWG files. A null pointer dereference vulnerability exists in GNU LibreDWG version 0.10. An attacker can obtain a null pointer dereference via the getbmp ... /... /programs/dwgbmp.c:164 to cause a denial of service...

6.5CVSS6.8AI score0.00865EPSS

NVD•added 2021/05/17 10:15 p.m.•16 views

CVE-2020-21842

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...

8.8CVSS0.01232EPSS

NVD•added 2021/05/17 10:15 p.m.•22 views

CVE-2020-21831

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionhandles ../../src/decode.c:2637...

8.8CVSS0.01231EPSS

NVD•added 2021/05/17 10:15 p.m.•17 views

CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

8.8CVSS0.01543EPSS

OSV•added 2021/05/17 10:15 p.m.•11 views

CVE-2020-21831

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionhandles ../../src/decode.c:2637...

8.8CVSS7.3AI score

OSV•added 2021/05/17 10:15 p.m.•19 views

CVE-2020-21843

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitreadRC ../../src/bits.c:318...

8.8CVSS7.3AI score

NVD•added 2021/05/17 10:15 p.m.•15 views

CVE-2020-21843

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitreadRC ../../src/bits.c:318...

8.8CVSS0.01232EPSS

OSV•added 2021/05/17 10:15 p.m.•16 views

CVE-2020-21842

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...

8.8CVSS7.3AI score

OSV•added 2021/05/17 10:15 p.m.•17 views

CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

8.8CVSS7.7AI score

Prion•added 2021/05/17 10:15 p.m.•21 views

Heap overflow

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitreadRC ../../src/bits.c:318...

6.8CVSS8.8AI score0.01232EPSS

Prion•added 2021/05/17 10:15 p.m.•18 views

Code injection

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

6.8CVSS8.9AI score0.01543EPSS

Prion•added 2021/05/17 10:15 p.m.•20 views

Heap overflow

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionhandles ../../src/decode.c:2637...

6.8CVSS8.8AI score0.01231EPSS

Prion•added 2021/05/17 10:15 p.m.•20 views

Heap overflow

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...

6.8CVSS8.8AI score0.01232EPSS