Lucene search
K

112 matches found

Prion
Prion
added 2022/07/15 11:15 p.m.18 views

Out-of-bounds

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Using an affected version of MicroStation or MicroStation-based application to open an IFC file containing crafted data can force an out-of-bounds read. Exploitation of these vulnerabilities within...

1.9CVSS4.1AI score0.00205EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2022/07/15 10:44 p.m.63 views

CVE-2022-35904

Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x contain an out-of-bounds read when opening an IFC file with crafted data. Exploitation occurs during IFC parsing, potentially allowing an attacker to read information in the context of the current process. Affected products: ...

3.3CVSS4AI score0.00205EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2022/07/15 10:44 p.m.18 views

CVE-2022-35904

An issue was discovered in Bentley MicroStation before 10.17.0.x and Bentley View before 10.17.0.x. Using an affected version of MicroStation or MicroStation-based application to open an IFC file containing crafted data can force an out-of-bounds read. Exploitation of these vulnerabilities within...

3.3CVSS4.3AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.5 views

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.2.034 that stems from a specific flaw in the IFC file parsing process. An attacker could exploit t...

7.8CVSS7.8AI score0.00946EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.4 views

PT-2022-18939 · Bentley · Bentley Microstation Connect

Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...

7.8CVSS7.8AI score0.00959EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.24 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.00959EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.36 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.00938EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.39 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.2AI score0.00946EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.41 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.00959EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.23 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.00959EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.25 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.00927EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.26 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.00652EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.33 views

Bentley MicroStation CONNECT IFC File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.7AI score0.00946EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.5 views

Bentley Systems MicroStation 缓冲区错误漏洞

Bentley Systems MicroStation is a Cad software platform for 2D and 3D design and drafting from Bentley Systems, USA. A buffer error vulnerability exists in Bentley MicroStation CONNECT version 10.16.2.034 that stems from a specific flaw in the IFC file parsing process. An attacker could exploit t...

7.8CVSS7.8AI score0.00938EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.34 views

Bentley MicroStation CONNECT IFC File Parsing Uninitialized Variable Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.8AI score0.00642EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.9 views

PT-2022-18956 · Bentley · Microstation Connect

Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...

7.8CVSS7.8AI score0.00642EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.6 views

PT-2022-18953 · Bentley · Microstation Connect

Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...

7.8CVSS7.8AI score0.00959EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.35 views

Bentley MicroStation CONNECT IFC File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.8AI score0.00904EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/04/12 12:0 a.m.5 views

PT-2022-18954 · Bentley · Bentley Microstation Connect

Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.34 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a malicio...

7.8CVSS8.1AI score0.00904EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2022/04/12 12:0 a.m.27 views

Bentley MicroStation CONNECT IFC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.00647EPSS
Exploits0References1
Rows per page
Query Builder