CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

OSV•added 2021/05/27 5:15 p.m.•0 views

CVE-2021-27490

Datakit Software libraries CatiaV53dRead, CatiaV63dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior are vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code...

7.8CVSS7.3AI score

Exploits0References3

NVD•added 2021/05/27 4:15 p.m.•11 views

CVE-2021-27492

When opening a specially crafted 3DXML file, the application containing Datakit Software libraries CatiaV53dRead, CatiaV63dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior could disclose arbitrary files to remote attackers. This is because of the passing of...

5.5CVSS0.01284EPSS

Exploits0References3

Prion•added 2021/05/27 4:15 p.m.•18 views

Default credentials

Datakit Software libraries CatiaV53dRead, CatiaV63dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files. This could result in an out-of-bounds write past the end of an allocated structure. An...

6.8CVSS7.7AI score0.00404EPSS

Exploits0References3Affected Software2

Prion•added 2021/05/27 4:15 p.m.•19 views

Code injection

Datakit Software libraries CatiaV53dRead, CatiaV63dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing PRT files. This could lead to pointer dereferences of a value obtained from an untrusted source. An...

6.8CVSS7.6AI score0.00404EPSS

Exploits0References3Affected Software2

CVE•added 2021/05/27 4:8 p.m.•57 views

CVE-2021-27490

Datakit CrossCADWare libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr embedded in Luxion KeyShot (versions ≤ 10.1) are affected by CVE-2021-27490 due to an out-of-bounds read when parsing CATPart data, potentially allowing code execution in the affected process. Red ...

7.8CVSS7.8AI score0.00404EPSS

Exploits0References3Affected Software2

CVE•added 2021/05/27 3:41 p.m.•65 views

CVE-2021-27492

The CVE-2021-27492 entry concerns Datakit CrossCADWare libraries (CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr) embedded in Luxion KeyShot v10.1 and earlier. The connected Red Hat, ZDI, and ICS/CERT records confirm a concrete XXE-style vulnerability: when opening a special...

5.5CVSS5.5AI score0.01284EPSS

Exploits0References3Affected Software2

Cvelist•added 2021/05/27 3:41 p.m.•17 views

CVE-2021-27492

5.8AI score0.01284EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by