CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2021/05/17 8:58 p.m.•20 views

CVE-2020-21840

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitsearchsentinel ../../src/bits.c:1985...

8.9AI score0.01372EPSS

CVE•added 2021/05/17 8:58 p.m.•74 views

CVE-2020-21840

The connected records confirm a heap-based buffer overflow in GNU LibreDWG 0.10, exploitable via bit_search_sentinel in ../../src/bits.c:1985. Affected component: LibreDWG library (C, DWG reading/writing). Root cause: buffer overflow in heap handling. Impact as stated: Confidentiality/Integrity/A...

8.8CVSS8.8AI score0.01372EPSS

CVE•added 2021/05/17 8:55 p.m.•74 views

CVE-2020-21839

GNU LibreDWG 0.10 is affected by a memory leak in the dwg_decode_eed path (decode.c:3638) triggered by crafted input. Connected sources consistently describe the vulnerability but do not provide a patch or remediation details; no exploitation status is stated. Monitor for updates for a fix.

6.5CVSS6.3AI score0.01198EPSS

Cvelist•added 2021/05/17 8:55 p.m.•19 views

CVE-2020-21839

An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead to an memory leak in dwgdecodeeed ../../src/decode.c:3638...

6.4AI score0.01198EPSS

CVE•added 2021/05/17 8:41 p.m.•70 views

CVE-2020-21838

CVE-2020-21838 affects GNU LibreDWG 0.10 and is a heap-based buffer overflow triggered by read_2004_section_appinfo in ../../src/decode.c:2842. The vulnerability is documented across multiple sources (NVD, Red Hat, SUSE, CNVD/CNVD-like entries, OSV, etc.). Reported impact indicates potential part...

8.8CVSS8.8AI score0.01372EPSS

Cvelist•added 2021/05/17 8:41 p.m.•18 views

CVE-2020-21838

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read2004sectionappinfo ../../src/decode.c:2842...

8.9AI score0.01372EPSS

Cvelist•added 2021/05/17 8:33 p.m.•20 views

CVE-2020-21836

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionpreview ../../src/decode.c:3175...

8.9AI score0.01167EPSS

CVE•added 2021/05/17 8:33 p.m.•64 views

CVE-2020-21836

The CVE-2020-21836 entry is confirmed with concrete details across connected documents: a heap-based buffer overflow in GNU LibreDWG 0.10 triggered via read_2004_section_preview in ../../src/decode.c:3175. Documents consistently describe LibreDWG as the impacted library for DWG file handling, wit...

8.8CVSS8.8AI score0.01167EPSS

Cvelist•added 2021/05/17 8:28 p.m.•17 views

CVE-2020-21835

A null pointer deference issue exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2337...

6.5AI score0.00865EPSS

CVE•added 2021/05/17 8:28 p.m.•65 views

CVE-2020-21835

CVE-2020-21835 affects GNU LibreDWG 0.10, with a null pointer dereference in the function read_2004_compressed_section (../../src/decode.c:2337). Multiple sources describe it as a denial of service vulnerability in LibreDWG’s DWG reader/writer stack. The primary technical detail available across ...

6.5CVSS6.4AI score0.00865EPSS

Cvelist•added 2021/05/17 8:25 p.m.•19 views

CVE-2020-21834

A null pointer deference issue exists in GNU LibreDWG 0.10 via getbmp ../../programs/dwgbmp.c:164...

6.5AI score0.00865EPSS

CVE•added 2021/05/17 8:25 p.m.•67 views

CVE-2020-21834

CVE-2020-21834 affects GNU LibreDWG 0.10, with a null pointer dereference in the DWG-to-BMP workflow. The issue is triggered via get_bmp in programs/dwgbmp.c:164, as described across multiple sources (NVD, Red Hat, SUSE, CNVD, and others). Impact is described as a denial of service due to the nul...

6.5CVSS6.4AI score0.00865EPSS

Cvelist•added 2021/05/17 8:23 p.m.•20 views

CVE-2020-21833

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read2004sectionclasses ../../src/decode.c:2440...

8.9AI score0.01449EPSS

CVE•added 2021/05/17 8:23 p.m.•75 views

CVE-2020-21833

The CVE-2020-21833 entry affects GNU LibreDWG 0.10 and is caused by a heap-based buffer overflow in the decoder path, triggered via read_2004_section_classes at ../../src/decode.c:2440. The existing records consistently describe this vulnerability as a heap overflow in LibreDWG 0.10; no additiona...

8.8CVSS8.8AI score0.01449EPSS

Cvelist•added 2021/05/17 8:20 p.m.•23 views

CVE-2020-21832

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2417...

8.9AI score0.01232EPSS

CVE•added 2021/05/17 8:20 p.m.•68 views

CVE-2020-21832

CVE-2020-21832 describes a heap-based buffer overflow in GNU LibreDWG 0.10, triggered by reading in the function read_2004_compressed_section (src/decode.c:2417). The vulnerability affects LibreDWG’s ability to safely process certain DWG inputs, with potential impacts on confidentiality, integrit...

8.8CVSS8.8AI score0.01232EPSS